This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About cheez
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About cheez
10-28-2019
7Posts
0Likes
0Solutions
Oct 28, 2019Last Visited
User
Activity
User
Profile
Latest posts by cheez
| Subject | Views | Posted |
|---|---|---|
| 8168 | 08-01-2019 06:14 AM | |
| 8275 | 07-30-2019 05:55 AM | |
| 8443 | 07-29-2019 12:24 PM | |
| 8474 | 07-29-2019 11:48 AM | |
| 1992 | 02-07-2018 03:46 PM |
User Badges
Community Statistics
| Member Since | 05-04-2015 07:10 AM |
| Date Last Visited | 10-28-2019 03:53 PM |
| Posts | 7 |
08-01-2019
06:14 AM
Thanks, Both for your advice. I have a lab connection successfully set up now.
... View more
07-30-2019
05:55 AM
Thank you Both for your guidance on this. I believe I have enough to set up a test tunnel from My lab firewall to production. I will use an IP that's not currently being used for NAT And @alexander.Astardzhiev: Yes, it will be our end only initiating the traffic to access a few servers on the Client side. I will add the route to those on the via the tunnel.
... View more
07-29-2019
12:24 PM
Thanks for your reply. I should have known that. We have another IP from the block we bought that is not in use. If I use that will the regular web traffic be affected? The tunnel is in its own zone
... View more
07-29-2019
11:48 AM
Hello, I have to set up a Site-to-Site VPN so our users can access some resources on a clients network. As we had here a lab firewall, another Palo Alto, I set up a test between our production and lab. This worked and I was able to connect. For the actual connection to the client, their side is a Cisco ASA. I provided our Peer IP(Public IP) and internal subnet on my end from which to expect the tunnel traffic, 192.168.8.0/21. They informed me that this range is already in use for another client. From there I researched what could be done to make this work. I came this link, https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClSGCA0 and that all made sense. I went back to the client to inform them of the new subnet, 10.8.0.0/21 and they again said its in use. I asked if any 172.16. networks could be used and they said no. And that I should use a public IP for PAT intstead of an alternative private range. My question is, can I re-use the Public IP address that is being used in the existing NAT/PAT rule for internet access, to PAT the connections to through the client tunnel. Will this affect the non-tunnel traffic. I am trying to simulate in the lab set-up but wanted to see if anyone has had configure a Site to Site VPN in this manner. Thanks in advance for any advice.
... View more
- Tags:
- site to site VPN
- vpn
02-07-2018
03:46 PM
Thank you. Working perfect.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
10-28-2019
03:53 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks