Tuesday, December 9, 2014

Palo Alto: In Initial Configuration, Commit Fails Due To Virtual-Wire Config

In the initial configuration of the Palo Alto, I notice that if you do not want to do virtual wire, you have to go into Network --> Virtual Wires and delete the default that is configured to get the commit to succeed.  I dont love that really, but if you are configuring for a Layer 3 firewall, then I have found I have to go delete this out.
Posted by

2 comments:

  1. AnonymousDecember 9, 2014 at 8:23 AM

    The Palo Alto firewall is capable of L3 and virtual wire simultaneously, the commit is usually an issue if you have not properly configured them both. I run virtual wire and L3 all the time in my installs as a matter of fact I usually do Tap as well to provide another resource for future fault isolation.

    -Jim

    ReplyDelete
    Replies
    1. ShaneDecember 9, 2014 at 1:22 PM

      Maybe, but this seemed to work for me in this situation.

      Delete

Your comment will be reviewed for approval. Thank you for submitting your comments.

Subscribe to: Post Comments (Atom)