LIVEcommunity - About simsim

simsim

Hi The third question was about how a passive firewall handles the data traffic, In VPC the switch will send the traffic in all ports . And the passive firewall drops all traffic. That means the actual data traffic is ended nowhere ? Thanks

simsim

Hi @BPry your help to the community is always awesome. No words to comment about your help

simsim · ‎05-09-2021

Hi @BPry Thanks for the reply . can you explain what do you mean by " From a PAN perspective a vPC is invisible" and also "you can lose a chassis without an associated firewall failover" Second question in vpc 101 since there is all ports are designated both active and passive firewall will receive traffic. (Correct me if I am wrong) If that yes how a passive firewall handle the traffic Thanks.

simsim · ‎05-08-2021

Hi, Hi, Please advise on the above design . Is there any pros and cons ? Thanks

simsim · ‎11-28-2020

Hi, I have the below topology PA and ASA are in routed mode . The first question is the design is valid? I am facing a problem in this design ASA says the secondary is failed ,primary asa says the secondary and dmz zone interface failed Thanks

simsim · ‎10-21-2020

Hi, I don't have ACI deployment , Just VPC enabled Thanks

simsim · ‎10-17-2020

Hi, cisco campus lan design ( access distribution core ) In data center we are using cisco vpc (spine and leaf ) Now I want to place an (acive standby fw ) in data center . I place the Please guide me to do so , Where should I Place the firewall Thanks

simsim · ‎09-25-2020

Thanks @Brandon_Wertz @BPry @SutareMayur It would be great if you experts can share your setup regarding management interface

simsim · ‎09-25-2020

Hi @Brandon_Wertz Currently I am using the simple solution as you shown in the screen shot .That is permitted ip . I am trying to learn something new . I can just creat a vlan in dc . But my worry is if someone put a deny policy and he can deny management network also ? Thanks

simsim · ‎09-25-2020

hI @BPry @SutareMayur Thanks for the reply . I can a create a separate vlan . when you say an isolated vlan what about the inter vlan routing . It would be great if you give a diagram Thanks

simsim · ‎09-24-2020

Hi, Thank you for the reply "Generally speaking your management network would be completely separate from your other networks, or at the very least an isolated VLAN " When you say completely separate from other network ,How the routing between other network for access. Can you give an example Thanks

simsim · ‎09-24-2020

Hi, i have distribution , core ,access layer data center are connected to core , Need to setup data center firewall In data center we are following 192.168.0.0 /16 in distribution 10.0.0.0/8 So what should be my managemnt interface ip address . I should choose one of the datacenter network ip address ? Thanks

simsim · ‎09-08-2020

Hi, site says forbidden while browsing the site , when I bypass there is no issue . 2)When I am uploading files to web site it fails , when by pass it works Any hint to the root cause of the problem Thanks

simsim · ‎09-01-2020

Hi, Here is the packet capture from google drive to the client . COuld you see anything wrong in it Thanks

simsim · ‎08-31-2020

Hi, when I am downloading file from internet , I can see lot of packet loss and congestion in wireshark capture analysis . I want to make sure PA is the culprit How can I verify this . I have disabld QOS on PA Thanks

Member Since	‎04-15-2017 05:12 AM
Date Last Visited	2 weeks ago
Posts	129

Online Status	Offline
Date Last Visited	2 weeks ago

Re: PA and VPC

Re: PA and VPC

Re: PA and VPC

PA and VPC

PA and ASA n route mode

Re: PA and VPC

Re: PA PLACEMENT

Re: Mangement interface

Re: Mangement interface

Re: Mangement interface

Re: PA and VPC

Re: PA and VPC

Re: PA and VPC

PA and VPC

PA and ASA n route mode

Re: Palo alto placement

Palo alto placement

Re: Mangement interface

Re: Mangement interface

Re: Mangement interface

Re: Mangement interface

Mangement interface

forbidden

Re: packet loss

packet loss

Network Security

Cloud Security

Security Operations