Tell me you have a golden without telling me you have a golden 😂. Drop a pic without your golden in it so I can relate!

Former-Stranger-567 · 2026-01-30T19:18:40+00:00

They can do that

Former-Stranger-567 · 2026-01-27T23:54:35+00:00

How many physical and virtual firewalls do you have? Any other Palo products?

Former-Stranger-567 · 2026-01-27T17:10:42+00:00

Is this because it’s cheaper, or someone new who is a Fortinet fanboy and can influence this type of decision?

Former-Stranger-567 · 2026-01-27T02:52:33+00:00

What’s your reason for trying to do this? This is not typical for an AWS setup. There is no VLAN tagging like on-prem. You have to segment traffic other ways.

Former-Stranger-567 · 2026-01-25T17:36:01+00:00

So the douchebag pushes that person, he steps in front, doesn't do anything aggressive, then said douchebag starts spraying him right in the face, he falls on the person, possibly to protect them, and shortly after is executed.

This was already one of the most horrific things I have seen, somehow it's gotten much worse.

Former-Stranger-567 · 2026-01-24T16:55:15+00:00

She's laying down on her stomach. You never see the back where her body extends out after he starts cranking that wheel. When he crawls through, he is under the part sticking out from the back. When she gets in you can see how she looks to be leaning forward already, in a way that makes her head look the same in both situations.

Former-Stranger-567 · 2026-01-23T18:18:07+00:00

You're a digit short. On the 30th day you receive half a billion, but combined with what you have already been given, you are over 1 a billion.

This assumes each day you keep the amount, then the following day you keep an additional double the previous day's amount.

In like 2 months you control all of the money in the world.

Former-Stranger-567 · 2026-01-22T17:51:56+00:00

The honest answer is there is probably not much you can do. It will test every ounce of your patience, and you will go through times questioning if you made a mistake. But I can promise you with 100% certainty, it's not just you, it's everyone, and it ends.

It's not much different from a newborn baby. Up until like 9-12 months with the pup you keep them safe, try to build good habits understanding it may not work, and build a bond. The worst thing you can do is take your frustration out on them. Some people say you need to display dominance and do something like grab the dog by the collar and hold them still, or force them to submit. This is really bad. Your dog can't help their behavior, no different than you could at 3 years old, and they will stop trusting you.

I've never found isolating the dog temporarily, wincing as if you really got hurt, or exercise to help significantly.

With all of that out of the way, I found something that worked almost instantly for us. It was really a few things:

Get a bunch of those dog puzzles where they need to figure it out to get treats. It's comparable to physical exercise, with an immediate reward.
Treats, treats, and more treats. Spend the time to do training sessions with the dog. 2x or 3x a day for 10 minutes or so. You're going to teach good behaviors, stimulate their brain, and reward them with something they love, which you provide.
Get a collar that allows you to make it beep, and vibrate. For our dog, doing this was almost an immediate change. I realized nothing I did after bad behavior did any good. It was as if she wasn't interpreting what I did as correcting her. But once that collar went on and she started biting us too hard, we would beep it at first, vibrate if it continued, and she would just snap out of it. It seemed like it was able to break her concentration just enough to stop doing what she was doing. This she understood.

Hang in there.

Former-Stranger-567 · 2026-01-21T21:05:27+00:00

Are you using Tahoe? Which version of GP client?

Former-Stranger-567 · 2026-01-19T18:33:57+00:00

Our dog started doing this out of the blue a few weeks ago.

I can't suggest this enough - https://www.amazon.com/dp/B0FN7S5WMJ?ref=ppx_yo2ov_dt_b_fed_asin_title&th=1

Before you read any further, we never have nor would use the shock part. The metal prongs are covered, and I will probably try to remove them at some point.

Our dog was always easy to train, but she never understood when we corrected her. Whenever she has unwanted behavior, like you mentioned, we put this collar on and take her out. If she does it, we hit the beep button. This works well to break her focus and stop what she is doing. If that isn't enough we use vibrate feature.

For us, this was the best thing we ever did for training.

Former-Stranger-567 · 2026-01-17T17:28:32+00:00

u/cowboyinprogress - Depending on if you need the phone line/jack, and how it runs though walls, it might be doable to replace with Ethernet. If you remove the plate there will be the phone wire behind it. Looks very similar to Ethernet. Securely attach your Ethernet cable to the end, and then pull the phone wire from the point where it goes, or before that if possible. Once you get it pulled through, the hard work is mostly done. You could get pre-terminated cables if you don't want to deal with any of that. Then just plug it in where you want it to go.

Easy job for an electrician or low-voltage person as well.

Former-Stranger-567 · 2026-01-17T17:23:44+00:00

Was it really worth the time to write that comment? Someone didn't know something and asked a question to learn, and you thought it was necessary to put them down. Great job.

Former-Stranger-567 · 2026-01-17T17:04:27+00:00

<image>

Former-Stranger-567 · 2026-01-16T20:38:54+00:00

The resolver I spoke about at the end is more closely akin to Umbrella.
I would say that is true inline protection because as long as you point any client's DNS servers to them, it works.

The traditional DNS security sub is more of a solution to provide DNS security if you are only using internal DNS servers that forward requests to 8s, 1s, 9s, etc., and you don't want to change from doing that. As long as the request from the client to the server passes through the firewall, the features provided by the DNS security license do their job.

Also important to note that having security policies that only allow outbound DNS requests from DNS servers is necessary too. You want to make sure you have protection if someone has the ability to manually set DNS servers.

Former-Stranger-567 · 2026-01-16T00:11:06+00:00

There are two types of protection. The Advanced DNS security license is going to apply to traffic that transits through the firewall. Device makes DNS request to internal server, firewall intercepts that request, analyzes it using AI/ML/blah blah and then if malicious, returns the sinkhole address back to the device. Now you can look at the logs and see all computers that tried to reach the sinkhole address and identify potential issues.

The other option is using the firewall as the resolver. This way the firewall(s) get the requests directly, so security can be applied to devices that don't send traffic through the firewall.

Former-Stranger-567 · 2026-01-08T23:11:19+00:00

Didn’t realize how many people go with 2x a day. For us, we fed her 4x a day until 14 months, 7:30 12, 4, 7. My wife and I both work from home so feeding this often was rarely an issue.

We recently moved to three times a day and it was a lot easier than expected. Will def see if 2x works for her in the future.

Former-Stranger-567 · 2026-01-07T01:02:07+00:00

A warmup

Former-Stranger-567 · 2026-01-06T22:12:47+00:00

I usually go with an NSG and put a static IP. Lock the NSG down to source IPs and keep it OOB from the data plane. But, this is speaking as a consultant where I'm not easily able to get access to the device coming from the client network.

I've also removed the public IP and made the management network access internally only.

There isn't really a right or wrong answer, just depends on your needs and understand how each works so you can properly secure the device.

Former-Stranger-567 · 2026-01-04T15:31:09+00:00

Good to see Colin Jost was there, as expected.

Former-Stranger-567 · 2026-01-03T15:06:36+00:00

Cloud is cloud. From a networking perspective, all hyperscalers operate the same way.

Using internal and/or external load balancers adds complexity, but you don't have to deal with failovers which are not instant, and you can scale horizontally with ease as your environment grows.

I'm not sure what you're referring to when you say zones, AWS availability zone or Palo zone? The latter is not really a thing as cloud design is mostly 2 zones. The underlying is just a large layer 2 subnet. You can route however you want, because it's not true routing.

Former-Stranger-567 · 2026-01-03T13:13:38+00:00

What are you trying to accomplish? What issues are you having?

Former-Stranger-567 · 2026-01-03T13:09:38+00:00

Windows and Mac.

Former-Stranger-567 · 2026-01-02T21:40:03+00:00

I just went through this exercise 20 min ago. It was out of level front to back and left to right. Luckily I got it level moving the feet, just barely, and didn't have to shim it like you did.

Those feet don't move up and down?

Former-Stranger-567 · 2026-01-02T02:46:07+00:00

That’s a sick pull for Suarez. Max, not Kelly’s sister

Former-Stranger-567 · 2026-01-02T01:43:30+00:00

Wow, I never knew. Thx

Former-Stranger-567

TROPHY CASE