I have a PA-200 that I'm trying to set up in a simple lab environment. Eth1 is configured as a layer 3 interface with a public IP on it and Eth2 is configured as a layer 3 interface with an internal IP address on it. Eth2 is configured to hand out DHCP requests to internal client, which happens successfully and the internal clients can also ping their default gateway, which is the IP on interface Eth2. Also, while connecting to the PA-200 via SSH, I am able to successfully ping internet hosts, however, the internal hosts can not access the external hosts. I have the NAT set up properly as well as the access rules. The weird part about all of this is that connectivity to the internet works for approximately 10-15 seconds after a reboot of the PA-200. This is happening on two separate boxes, so I do not believe it is a hardware issue. I guess my question is has anyone seen this before, or have any configurations ideas to correct this?
... View more
