Posted on 26 November 2022 11 min read
Information on running packet captures and debugging commands to follow traffic flows.
Posted on 8 November 2022 8 min read
Useful commands to see general information on the firewall resources been used, interface and traffic statistics, and traffic counters.
Posted on 5 November 2022 16 min read
Information on how applications are identified by App-ID and following sessions and traffic flows through the firewall using the CLI.
Posted on 26 October 2022 12 min read
Palo Alto firewalls use the concept of a running config to hold the devices live configuration and the candidate config is copy of the running config where changes are made. A Commit operation causes the running config to be overwritten by the candidate config activating the changes.
Posted on 12 October 2022 23 min read
A run through using the CLI to set up a Palo firewall at home covering the initial configuration, upgrading, BGP routing and a basic firewall policy.
Posted on 27 September 2022 16 min read
The majority of Cisco SD-WAN guides and posts I have found use static routing rather than routing protocols on the transport-side. Static routes are all very well for SD-WAN tunnel traffic but I was wanting to understand how you equate for DIA traffic in a more real-life situation where address ranges are advertised via BGP.
Posted on 1 May 2022 13 min read
The Cisco documentation about this call it Inter-AS Option B with the use case being to extend LSPs between sites over the one link. As Option B is the only MPLS-VPN method supported by Cisco SD-WAN I wanted to get a better understanding of how it works aswell as see if it could be used to extend multi-VRF prefixes between edge routers and a core switch within the same AS (rather than using Option C with LDP).
old school + new school = no school