Situation: You have HTTP service running on non-standard port and Palo Alto is blocking it Steps: 1. Define new application 2. Apply policy Define new application 1. Go to Object→Applications→Add 2. From the Application window, fill up necessary info as per below example. Apply policy 1. Go to Policy→Application Override→Add 2. Create new policy and… Read More »
Situation: 1. You need to do hardware swap (POC unit to actual unit) 2. You don’t have Panorama, and you need to do hardware swap due to RMA Steps: 1. Ensure components are in the same version 2. Export and Import config 3. Commit configuration Ensure components are in the same version 1. Make sure… Read More »
This post shows how to configure a TACACS+ server for system authentication in Juniper SRX with open source tac_plus software. Brocade IronStack configuration aaa authentication web-server default local aaa authentication login default tacacs+ enable local aaa authentication login privilege-mode aaa accounting commands 0 default start-stop tacacs+ aaa accounting exec default start-stop tacacs+ aaa accounting system… Read More »
This post shows how to configure a TACACS+ server for system authentication in Juniper Netscreen SSG with open source tac_plus software. Juniper Netscreen SSG Configuration set auth-server TACACS id 1 set auth-server TACACS server-name 192.168.1.100 set auth-server TACACS backup1 192.168.1.200 (optional) set auth-server TACACS account-type admin set auth-server TACACS type tacacs set auth-server TACACS tacacs… Read More »
This post shows how to configure a TACACS+ server for system authentication in Juniper SRX with open source tac_plus software. Juniper SRX configuration Connect to SRX and enter configure mode root@SRX-FW% cli {primary:node1} root@SRX-FW> configure warning: Clustering enabled; using private edit warning: uncommitted changes will be discarded on exit Entering configuration mode{primary:node1}[edit] root@SRX-FW# Add a new TACACS+… Read More »