About Mic

Mic · ‎08-02-2013

Right, it's a very basic initial test with the goal being sure that your Security Policy allows all your inter-zone traffic. I'm hoping to get details from others that have tested VWire configurations in a lab environment, without having to generate traffic from different networks to test the Source<->Destination allows in the Security Policy.

Mic · ‎08-02-2013

Hi, At a recent PA training, the instructor mentioned a testing method for testing the configuration of VWire objects and the traffic flow, as configured in your Security Policy. The goal of this method is the ability to do testing in a lab environment vs. testing your traffic flow after you've put the device into production. With your device in a lab environment and the VWire objects and interfaces configured, you connect ethernet to two ports you're testing. To that you connect two switches and one laptop to either swtich (two laptops total). You then set each laptop's gateway to the other laptop and see if you can connect. By reaching the laptop over the other port, you're able to determine that your security policy between those two zones is configured as needed. And you repeat this for your other ports/zones to test inter-zone traffic. Is anyone able to confirm this method or offer a suggestion on testing VWires object / zone / Security Policy configurations prior to deploying the PA into production? Thanks

Date Registered	‎07-24-2013 11:31 AM
Date Last Visited	‎08-18-2015 09:07 AM
Total Messages Posted	2

Online Status	Offline
Date Last Visited	‎08-18-2015 09:07 AM

About Mic

Re: VWire configuration testing

VWire configuration testing

Re: VWire configuration testing

VWire configuration testing

Strata

Prisma

Cortex

About Mic

Re: VWire configuration testing

VWire configuration testing

Re: VWire configuration testing

VWire configuration testing