Configure paloalto with inital firewall rules using ansible
Hello Paloalto,
Do we have any ansible playbooks for initial configuration of paloalto.
To set the inital set of rules for paloalto firewall??
Thank you,
Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.
Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.
Hello Paloalto,
Do we have any ansible playbooks for initial configuration of paloalto.
To set the inital set of rules for paloalto firewall??
Thank you,
Is anyone finding that the min VM required to run PA in Azure is expensive?
It does not appear that it lets you size down teh VM ?
Any recommendations
thanks
Need to Map internal server with Public IP (Static NAT ) with specfic ports exposed to the internet.
I belive the public IP needs to be associated with Azure load balancer .
Request some one to share the config of azure as well the Palo alto config .
...
We want to create a firewall with four or more interfaces (instead of the default 3) in Azure. We understand that for this to work, we will need to use ARM templates.
I have downloaded the ARM-template from here and edited it to contain four interfac
...
Hi,
We have roughly 30-40 VPN tunnels built to AWS from on-prem, each being used by a different business unit for development. What happens though, is during their process they are forced to blow away their EC2 instance and create a new one. AWS then
...
Dear experts;
I have the following setup in Azure:
CentOS-1 --------(fwVNET/Trust)-----FW----------(fwVNET/Untrust)-----CentOS-Untrust
But I cannot ping FW interface even with all Mgmgt profiles and addresses configured (which are in same subnet obv
...
Hello,
We are going to deploy a couple of PA firewalls with this template
https://github.com/PaloAltoNetworks/azure/tree/master/vmseries-avset
It's a nice start, but we want some changes to be made. And I was hoping someone could help out with the fol
...
Hello everyone, i hope you can help me, as the last time, now i have the problem with one of the configured groups.
i need to change the group password to acces by a native VPN from a iphone, so i change the password from a 8 characters password to a
...
96415 issue is recorded as fixed in 9.1.4, however I am still seeing it in 7.1.6.
Please advise what version of firmware is this error fixed?? Is this fixed in 8.0.0+?
Thank you.
96415
Fixed an issue where the firewall failed to pass traffic in stron
...
Hello,
I have some problem to configure a VPN between my Palo Alto and Azure.
I follow this tutorial : https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Configure-VPN-Tunnel-Between-a-Palo-Alto-Networks/ta-p/59065
So I have this confi
...
Does anyone have experience with a services/transit VPC at AWS?
Wondering specifically about experience with thoughput with the palo alto managing the transit traffic between the corporate office and multiple VPC's.
Doing a PoC of a Palo Alto Bundle 2 to see if we can send internet traffic through it from our main sites to replace our existing Web Proxy. While it appears that the design is working, the Agent is very slow. I have a Squid proxy setup in the same
...
Can someone cofirm if belwow github syntax is correct? When I try it weird is that I see rule hit palo alto in the logs but rule never actual builds and when I try syntax via web it showns :<![CDATA[ clyde -> source has unexpected text. ]]> but comma
...
Hello,
Is there an easy way to change the Azure Palo Alto from plan P1 to P2? Or would i need to migrate to a net setup?
With the NAT VM no longer being required and you can assign a public address to NIC1 I have a question on the NAT process concerning only connectivity from resources to the interent. Do you need to configure a source nat policy or do you just forwar
...