cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

About Anjush

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Anjush
‎09-22-2021
since ‎05-23-2018
L0 Member
User Activity
User Profile
Latest posts by Anjush
View All
User Badges
Community Statistics
Member Since ‎05-23-2018 11:14 PM
Date Last Visited ‎09-22-2021 02:40 AM
Posts 1

Asymmetric Routing and TCP Syn Check

by in General Topics
‎09-06-2019 08:45 PM
‎09-06-2019 08:45 PM
Hello All,   I have a scenario where I will be having two ISP's (ISP-A and ISP-B) connected to the PA Firewalls via eth1/1 and eth1/2 interfaces. Both these Interfaces will be in the same untrust-zone. ISP-A will be the primary one and ISP-B the backup with some prepends and local preference for incoming and outgoing traffic. However, ISP-B has confirmed that there will be cases where some external users using ISP-B will always prefer to come to Firewalls via ISP-B.This will cause an asymmetric routing where some of the incoming traffic is via ISP-B and outgoing is via ISP-A.   Since both Interfaces are in the same-zone some users have confirmed that session will match and traffic won't drop and Palo can handle the return traffic. Has anyone configured similar setup successfully? Are there any gotchas with this kind of setup? If anyone can guide me to a formal Palo Guide would be vaulable too.   Thanks AS ... View more
Register or Sign-in
Contact Me
Online Status
Offline
Date Last Visited
‎09-22-2021 02:40 AM
Likes Given To
View All
LEGAL NOTICES
RESOURCES
Copyright 2007 - 2021 - Palo Alto Networks