Palo Alto Firewall – Command Line Example (Interface and Access Rules)

The Palo Alto Firewall GUI is really slick, but sometimes its handy to create using the CLI, perhaps if you have a large number of changes that need to be made at once. Within this example, we’ll create a zone, then an Interface (on an Aggregate Interface), give it an IP address, apply a management […]

More...

AWS Transit Gateway with VPN to On-Premise Palo Alto Firewall

The AWS Transit Gateway can be used to join the networking of many VPCs (in the same or different AWS Accounts) within the same region together to facilitate communication, it may also be used in conjunction with DX (Direct Connect) or Site-to-Site VPNs to provide connectivity to other Cloud Platforms but additionally to on-premise networks […]

More...

Monitoring Interface Status on Palo Alto Firewall

In this scenario I had a pair of Palo Alto Firewalls that were providing firewall services as a perimeter pair of firewalls acting in an active/passive cluster. Due to our internal network configuration, use of OSPF etc. the interfaces (ports) on the passive firewall were set to be down/disabled when that firewall was not active. […]

More...