Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Live
- ›
- About PatrickWalton
About PatrickWalton
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
09-21-2020
6Posts
1Like
0Solutions
Sep 21, 2020Last Visited
User
Activity
User
Profile
Latest posts by PatrickWalton
| Subject | Views | Posted |
|---|---|---|
| 243 | 06-19-2018 09:32 AM | |
| 415 | 05-29-2018 11:18 AM | |
| 427 | 05-29-2018 09:49 AM | |
| 1472 | 05-13-2016 11:18 AM | |
| 5069 | 05-13-2016 10:54 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 | 05-29-2018 11:18 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 |
User Badges
Public Statistics
| Date Registered | 04-01-2016 09:33 AM |
| Date Last Visited | 09-21-2020 05:20 PM |
| Total Messages Posted | 6 |
| Total Likes Received | 1 |
06-19-2018
09:32 AM
I may have a use case to redirect traffic being sourced external to my network to another external destination. Based on the structure of the PBFpolicies it looks like I could do this and simply forward the traffic to another destination ip (not domain name). I can't find any concrete data points that would indicate this is not possible, but wanted to see if anyone else had done it before. Is it possible to do this?
... View more
05-29-2018
11:18 AM
1 Kudo
Thank you @reaper!!! This is exactly what I was hoping for and answers my newb question 🙂
... View more
05-29-2018
09:49 AM
We recently upgraded our Panorama M-100 to 8.0.9. After doing so, we now see these commit options: I've always been very weary of centralized firewall management after seeing a coworker push a bad config before to multiple devices. I'm a bit hesitant to click on anything that "pushes" to devices without being able to preview the configuration being pushed. This is probably a stupid question, but bear with me - when I click on the "push to devices" or "commit and push" options, do I still have the option to preview the changes being made, or does it immediately begin the commit/push process to the managed devices? Previously in 7.1.x you could click the commit button and a dialog window would open up. You could select the scope of the commit with a radio button and preview the changes to be made to each managed device one by one.
... View more
05-13-2016
11:18 AM
Is it possible to setup a vpn tunnel for yourself, then ssh to an inside management ip? I would be careful opening any external port up for management, especially if you use local authentication credentials.
... View more
05-13-2016
10:54 AM
When I look under Monitor -> Logs -> System, I see the following:
1. ipsec-key-delete: IPSec key deleted. Deleted SA <SA info> SPI:<hex dump>
2. ike-nego-p2-succ: IKE phase-2 negotiation is succeeded as responder, quick mode. Established SA <SA info> SPI: <hex dump>
3. ipsec-key-install: IPSec key installed. Installed SA <SA info> SPI: <hex dump>
We have several site to site tunnels on this firewall, some of them with multiple proxy id's. If I filter based on one specific proxy id, I see it going through this process frequently. Sometimes it is multiple times per minute, sometimes it goes ~5 minutes or so. The same occurs for numerous other proxy id's.
Is this something to be concerned about? It seems that I'm receiving delete messages that correspond to this behavior:
ike-recv-p2-delete: IKE protocol IPSec SA delete message received from peer. SPI: <hex dump>
... View more
04-01-2016
09:42 AM
Hey all,
First time poster, long time lurker. I have an odd issue with certain traffic being classified as RTMP.
Our guest wireless and corporate wireless exist in different zones. Their address space is different, too. We have two separate policies for corp and guest traffic, permitting http/https outbound to our external zone interface any any destination address.
What is odd is that some traffic hits the correct corp policy id, but other traffic hits a policy that is supposed to be for RTMP traffic:
Src Zone: Internal
Source: Any
Dst Zone: External
Destination: Any
Application: rtmp
Service: application-default
Action: allow
Only some traffic hits this policy, though. For example I'm able to go to https://www.networklessons.com and it loads fine, hitting the right policy. A packet capture shows a full three way handshake on the right policy, but only SYN and retransmit packets on the RTMP policy.
Any idea why only some of our https traffic is hitting that policy?
... View more
Latest Blogs
Latest Posts
Copyright 2007 - 2021 - Palo Alto Networks
