This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About ttak87
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About ttak87
05-29-2023
7Posts
0Likes
0Solutions
May 29, 2023Last Visited
User
Activity
User
Profile
Latest posts by ttak87
| Subject | Views | Posted |
|---|---|---|
| 4947 | 07-27-2021 10:17 PM | |
| 5004 | 07-27-2021 06:18 PM | |
| 5204 | 07-27-2021 06:11 PM | |
| 5258 | 07-26-2021 06:29 PM | |
| 5509 | 07-25-2021 11:25 PM | |
| 1868 | 12-07-2020 06:22 PM | |
| 1931 | 12-03-2020 10:47 PM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 2 Likes | |||
| 1 Like | |||
| 1 Like |
User Badges
Community Statistics
| Member Since | 01-17-2018 12:53 AM |
| Date Last Visited | 05-29-2023 09:00 PM |
| Posts | 7 |
07-27-2021
10:17 PM
I understood the content. Be able to explain well to customers. Thanks everyone for the replies. 🙂
... View more
07-27-2021
06:18 PM
Additionally, I looked at Palo Alto's document, and it seems that only the LB's IP is checked for the XFF IP in the proxy type LB. If so, I think that GCP is limited in practically using XFF when using ALB. Am I right? https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/policy/identify-users-connected-through-a-proxy-server/use-xff-values-for-ip-based-security-policy-and-logging.html
... View more
07-27-2021
06:11 PM
Hi, @SutareMayur This is the result of the requested command.
... View more
07-26-2021
06:29 PM
Hi, @SutareMayur Thanks for your reply. However, I have already set the settings you taught me. I want to check the Client IP and not the ALB IP in the log.
... View more
07-25-2021
11:25 PM
Hello. I have built a simple sandwich structure test environment on GCP Cloud. ALB ↙ ↘ FW1 FW2 ↘ ↙ NLB ↙ ↘ SV1 SV2 However, in the PAN traffic log, XFF IP is only the IP of the upper ALB. GCP's official documentation confirmed that the XFF header contains both the client IP and the LB IP. I actually did a packet capture from the PAN, both IPs are in the XFF header. Below is a capture of only the XFF part of the captured packet. (By capturing the packet, both the real client IP and the ALB IP can be checked.) Below is the XFF IP seen by the PAN. Only the IP of the ALB that is checked in packet capture is recorded in the log. The detailed log only checks the IP of the ALB. The point is, if the XFF IP is simply an ALB IP in the PAN traffic log, then the XFF function doesn't seem to have any meaning. Is there any way to see in the log the client IP and not the ALB IP? Or am I doing something wrong? Please help me... Regards,
... View more
12-07-2020
06:22 PM
Hi, Reaper Thank you for your prompt reply. Can you tell me how to move the VM panorama(VM-ware) image in use to nutanix? And can you tell me how to migrate logs from an existing VMware from Nutanix? I looked up the data but couldn't find it...
... View more
12-03-2020
10:47 PM
Hello Customers are using VM Panorama for VM-ware. Sooner or later, however, the customer will replace the vm-ware with a nutanix. VM Panorama version : 8.1.6 VM Mode : VMWare ESXi 1. Can I get an image of a VM Panorama in use and use it in Nutanix? 2. Will the log stored in the existing vm panorama be maintained if only the image is taken? 3. Can existing licenses be used? Please answer me. Thanks,
... View more
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks