How to see geneve encapsualted header information in packet capture
How to see geneve encapsualted header information in packet capture
Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.
Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.
How to see geneve encapsualted header information in packet capture
Hey All,
I am trying to deploy this template and have created an IAM role for this. I see there's an error regarding the image:
API: ec2:RunInstances Not authorized for images: [ami-a2fa3bdf]
Is that the current image to create? Or am I missing some
...
I'm currently trying to bootstrap a number of VM series firewalls in AWS using Terraform. So far, it appears to be mostly successful.
After provisioning the firewalls, I can see the S3 bucket being used is successfully detected from the AWS console.
...
I;ve installed a new firewall using Bundle 1, I get this error with a new VM
One of them worked correctly, but after I killed it, I started to get these issues. Any idea what can be wrong?
The PEM key is the proper one, created when I launched the mac
...
I am working with company that is using VM-Series appliances in AWS for site to site VPNs. The VPNs need to be up all the time but have low throughput requirements. To host multiple VPNs on one VM-Series they currently have to setup a virtual network
...
We are attempting to deploy Cloud Formation Templates to create the autoscaling groups and firewalls but there are some steps around API keys that are confusing. From the pictures seen below, we are being asked for API keys for the panorama, and for
...
We are attempting to internal load balance a pair of VM firewalls in Azure.
The firewalls work when traffic is sent directly to the firewalls. But when the Azure internal load balancer is added into the mix no traffic hits the firewall.
I have searc
...
Hi All,
We have 2 Palo Alto VM firewalls (A: Primary & B: Secondary) deployed in Active/Passive mode for high-availability. These firewalls are deployed in Azure cloud and have multiple site to site IPSEC VPN tunnels configured with multiple vendor
...
Any one knows, How to deploy a second VMseries on the same Resource group/VNET?
Hello.
I have built a simple sandwich structure test environment on GCP Cloud.
ALB
↙ ↘
FW1 FW2
↘ ↙
NLB
↙ ↘
SV1 SV2
However, in the PAN traffic log, XFF IP is only the IP of the upper ALB.
GCP's official documentation confirmed that the XFF h
...
Good Day,
Does azure deployment support PA in active-active HA setup? documents in PA end refers only active-passive setup. Has anyone deployed it as A-A in azure?
any pointers will be helpful.
Hi all,
I've setup 2 VM series in HA in Azure for north-south traffic and it works well with the floating IP moving after a few minutes during failover.
We want to add east west traffic flows with extra zones.
Does the extra zones require the same
...
Hi,
We have a pair of Panorama devices for managing couple of pairs of Firewalls ( in HA ) all in Azure. We have scheduled the config export which is scheduled everyday to store the config backups of Panorama+Firewalls in a server.
If there were a
...
Tested traffic within a same VPC it's working fine, use ENI of paloalto's LAN interface as a target
But I have no idea, when we have 2 VPC (VPC-A and VPC-B) and we installed paloalto on VPC-A
How to direct traffic from VPC-B to paloalto and then ac
...
The palo alto architecture for using app gateway in front of your firewall seems to different from Microsoft. Palo wants you to set your backend pools of appgateway to the frontend of the palo (public ip side) and then use NAT to translate, This has
...Subject | Likes |
---|---|
1 Like | |
1 Like | |
1 Like |