Paloalto general notes or best practices

From Notes_Wiki
Revision as of 06:21, 8 September 2023 by Saurabh (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Home > Enterprise security devices or applications > Paloalto firewall > [[Paloalto general notes or best practices]]

Add /32 netmask for a single IP

Adding netmask eg /32 for a single IP is important. Without this the policy / rule may get accepted and committed but does not works unless we add /32 netmask. This should be followed for all address objects without fail.

PA firewall interface MAC address

We cant get interface MAC via GUI. To know MAC of a firewall interface use:

  1. SSH to firewall and use
  2. Use show interface command. For example: 
    show interface ethernet1/3
    The output would have MAC address such as: 
    MAC address:
    

    Port MAC address c8:29:c8:97:b4:12


Home > Enterprise security devices or applications > Paloalto firewall > Paloalto general notes or best practices

Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php?title=Paloalto_general_notes_or_best_practices&oldid=8039"