How to see geneve encapsualted header information in packet capture
Hey All,
I am trying to deploy this template and have created an IAM role for this. I see there's an error regarding the image:
API: ec2:RunInstances Not authorized for images: [ami-a2fa3bdf]
Is that the current image to create? Or am I missing some
...
I'm currently trying to bootstrap a number of VM series firewalls in AWS using Terraform. So far, it appears to be mostly successful.
After provisioning the firewalls, I can see the S3 bucket being used is successfully detected from the AWS console.
...
I;ve installed a new firewall using Bundle 1, I get this error with a new VM
One of them worked correctly, but after I killed it, I started to get these issues. Any idea what can be wrong?
The PEM key is the proper one, created when I launched the mac
...
I am working with company that is using VM-Series appliances in AWS for site to site VPNs. The VPNs need to be up all the time but have low throughput requirements. To host multiple VPNs on one VM-Series they currently have to setup a virtual network
...
We are attempting to deploy Cloud Formation Templates to create the autoscaling groups and firewalls but there are some steps around API keys that are confusing. From the pictures seen below, we are being asked for API keys for the panorama, and for
...
We are attempting to internal load balance a pair of VM firewalls in Azure.
The firewalls work when traffic is sent directly to the firewalls. But when the Azure internal load balancer is added into the mix no traffic hits the firewall.
I have searc
...
Hi All,
We have 2 Palo Alto VM firewalls (A: Primary & B: Secondary) deployed in Active/Passive mode for high-availability. These firewalls are deployed in Azure cloud and have multiple site to site IPSEC VPN tunnels configured with multiple vendor
...
Any one knows, How to deploy a second VMseries on the same Resource group/VNET?
Hello.
I have built a simple sandwich structure test environment on GCP Cloud.
ALB
↙ ↘
FW1 FW2
↘ ↙
NLB
↙ ↘
SV1 SV2
However, in the PAN traffic log, XFF IP is only the IP of the upper ALB.
GCP's official documentation confirmed that the XFF h
...
Good Day,
Does azure deployment support PA in active-active HA setup? documents in PA end refers only active-passive setup. Has anyone deployed it as A-A in azure?
any pointers will be helpful.
Hi all,
I've setup 2 VM series in HA in Azure for north-south traffic and it works well with the floating IP moving after a few minutes during failover.
We want to add east west traffic flows with extra zones.
Does the extra zones require the same
...
Hi,
We have a pair of Panorama devices for managing couple of pairs of Firewalls ( in HA ) all in Azure. We have scheduled the config export which is scheduled everyday to store the config backups of Panorama+Firewalls in a server.
If there were a
...
Tested traffic within a same VPC it's working fine, use ENI of paloalto's LAN interface as a target
But I have no idea, when we have 2 VPC (VPC-A and VPC-B) and we installed paloalto on VPC-A
How to direct traffic from VPC-B to paloalto and then ac
...
The palo alto architecture for using app gateway in front of your firewall seems to different from Microsoft. Palo wants you to set your backend pools of appgateway to the frontend of the palo (public ip side) and then use NAT to translate, This has
...
reaper
on:
Core content from the show running resource-monitor command on a VM series firewall
reaper
on:
Hub and Spoke VPN
