I had an issue where I was replacing an expiring PKI certificate in the Palo Alto firewall. The certificate imported was successful and it chained correctly under the intermediate and root certificate. However, when I tried referencing the new certificate
firewalls
A collection of 7 posts
Using CLI to recover access to Panorama GUI
It is best practice to save current running configurations prior to making changes to the firewall. When a change breaks access to Panorama, you can get back to last known running config using the cli commands below log into cli
Packet Capture in Palo Alto firewalls
If you are doing a quick search for traffic flow into the firewall, run this command in CLI tcpdump filter "host x.x.x.x and port 443"you can use either the word host or src and get the
Cannot find PanOS uploaded in GUI
Upgrading to a new version of PanOS but cannot download the OS directly from the update site. Therefore, I manually uploaded the new PanOS. But after the firewall confirmed that the image was successfully updated, it does not display it
Helpful Palo Alto console commands
To unset xml output to general text output set cli config-output-format set Enter configuration mode configureGet all interface configurations while in config mode run show interface allGet specific interface configuration such as the management interface run show interface managementApply IP
FortiManager managing devices with different version firmwares
Using the administrative domain (ADOM) feature solves this issue. Log into FortiManager; system settings > advanced settings, select the advanced option under ADOM Mode and Apply. Proceed to Dashboard, within the system information widget turn Administrative Domain ON. Then go
BGP routing issues, configs between firewalls and Cloud
Configured VPN using BGP to cloud provider at site A and everything worked as expected, then configure VPN using BGP to cloud provider at site B and traffic from site A to site B broke. Looking at logs, saw traffic
Subscribe to Vick
Subscribe today and get access to a private newsletter and new content every week!