Palo Alto Networks : Firewall Loopback interfaces

In a dual-homed network infrastructure, loopback interfaces are a very valuable configuration option on Palo Alto firewalls. Cisco folk may be more familiar with the use of loopback interfaces, so this article gives a very quick look at some of the uses of a loopback interface in a Palo Alto firewall deployment. The most usedul … Continue reading Palo Alto Networks : Firewall Loopback interfaces

Advertisements

Nugget Post : Quick USER ID tip for palo alto admins

Quick Tip... You're a Palo Alto firewall administrator, and you've setup USER ID to identify all your users and write user-based firewall policies. Problem: some users have linux laptops and do not login to the domain, others are windows users that the USER ID system simply does not pick up. Solution: 1. Create a read … Continue reading Nugget Post : Quick USER ID tip for palo alto admins

Nugget Post: Study Material Links for Palo Alto CNSE exam

The following links are useful for all those pursuing Palo Alto Network's CNSE exam: Preperation Guide (overview) Tech Documents (more detail) Give special attention to the preparation guide, trust me, just got my certification 🙂

Traffic shaping using PfSense in bridged mode

Scenario: We needed an in-line, transparent traffic shaping solution. The solution we chose was pfsense due to it's easy to use UI and effective QoS. The PfSense had to be placed in bridge mode, on a link that was carrying tagged traffic. It is important that the PfSense did not touch the vlan tagging, it … Continue reading Traffic shaping using PfSense in bridged mode

Palo Alto firewall and BGP routing

Objective: This article will record the steps taken and scenarios simulated during BGP lab sessions involving the PA 5020. Scenario 1: A single ISP, with an eBGP peering between the PaloAlto and a CISCO ISP router.   The above network diagram shows the basic setup. The objective of this scenario is to advertise the “public” … Continue reading Palo Alto firewall and BGP routing

Clavister Firewalls: Top 5 useful console commands

This document provides a short description of the most widely used Clavister (click here for more information) console commands from experience. Note: for more information about any of the commands listed below, please type in help [command]. The below commands apply to Clavister CorePlus v8.9.x pcapdump This command starts up the packet capture mechanism on … Continue reading Clavister Firewalls: Top 5 useful console commands