Palo Alto Firewall Command Line Reference
Paloalto Firewall
Reset Paloalto Firewall Interface to Default State of Not Configured
To reset unused PaloAlto firewall interface to its default state of not configured, choose the interface and press delete option at the bottom.
Configure Site to Site IPSec VPN Tunnel between Cisco Router and Paloalto Firewall
One end of IPSec tunnel is a Paloalto Firewall with Static Public IP address and the other end is Cisco router with Dynamic IP address and behind an Internet modem. You can refer for step by step guide to establish IPSec VPN tunnel between Paloalto Firewall and Cisco Router.
Monitor Paloalto with OpManager
Step 1 – Configure SNMP in Paloalto Firewall Note: Paloalto Firewall supports SNMP version v2c and v3 and not v1. Configure SNMP Community String Login to Paloalto Firewall Go to Device > Setup > Operations tab > Click SNMP Setup under Miscellaneous Configure SNMP Community String and Save Use Event-specific Continue Reading
Configure Paloalto Firewall to access External Dynamic List – Series II
Series II Configure Paloalto Firewall to access External Dynamic List We are assuming that your feed server is running on your local network and the feed URL is accessible as http://10.10.10.2/text15.txt Important Note: Paloalto External Dynamic List accepts feed in .txt format only and each entry must be on new Continue Reading
Setup your own IP Feed in your LAN – Series I
Series I Firewall Feed is an open source web based tool written on PHP to setup and manage your own IP address feed in your local network. Click to Download Firewall Feed from Github The tool facilitates maintaining IP addresses in a text file. As and when needed, you can add Continue Reading
Challenges upgrading Paloalto firewall to 8.1.0 Version
We were upgrading all paloalto firewall appliances to latest base version 8.1.0 and we encountered numerous issues. We are sharing our experience here, you may also consider with caution while upgrading to latest version. 1. SMB traffic are blocked: Paloalto firewall blocks SMB traffic traversing through it. You cannot access Continue Reading
Configure IKEV1 Site to Site VPN between Cisco ASA and Paloalto Firewall
In this guide, we are configuring IKEV1 VPN between Cisco ASA and Paloalto firewall. This is applicable to all models of Cisco and PA firewalls. Configure Cisco ASA: 1) Phase 1: IKE policy ciscoasa(config)# crypto ikev1 policy 10 ciscoasa(config-ikev1-policy)# authentication pre-share ciscoasa(config-ikev1-policy)# encryption 3des ciscoasa(config-ikev1-policy)# hash sha ciscoasa(config-ikev1-policy)# group 2 Continue Reading