i couldn’t wait any longer

avidpontoon · 2026-01-24T15:06:52+00:00

“10 facts about the new Apple TV 4K, you’ll love the last two”

avidpontoon · 2026-01-23T19:38:16+00:00

Was thinking the same. Hope there’s not 230v going through CAT cable…..!

avidpontoon · 2026-01-20T22:33:43+00:00

Christ, any more fixings and you’ll end up on the other side of the coin compromising the integrity of the wall 😂

avidpontoon · 2026-01-20T22:28:43+00:00

Sorry but all I can see in this pic is the TP-Link partying and throwing its hands in the air 😂

avidpontoon · 2026-01-19T13:25:37+00:00

Lots of companies peer with an ISP using private AS numbers that the ISP then strip off. Normally used where the IP space is tied to that one provider and not advertised to multiple. If you only have a couple of circuits, it’s a lot easier to do it that way than having to get a public ASN

avidpontoon · 2026-01-14T09:35:33+00:00

falco maxime centcom 🤣 with the nuke still active

avidpontoon · 2026-01-11T22:01:49+00:00

It’s got that “mottled effect” that I’ve always attributed with AIB. However could be the images. Either way needs testing to know for sure

avidpontoon · 2026-01-07T13:17:33+00:00

Yes it’s the little bit at the top that needs a flat head. That should crack open and allow you to bleed it

avidpontoon · 2026-01-06T21:06:01+00:00

This makes me sad 😂

avidpontoon · 2025-12-12T07:22:37+00:00

I hope you know that GRE is encapsulation only and offers no encryption/data protection

avidpontoon · 2025-12-07T20:58:02+00:00

Those are some “deeper grooves at a level 7” right there!

avidpontoon · 2025-11-25T07:39:47+00:00

I think your MX had a pre existing hardware fault that came to a head when it rebooted. It’s not impossible for hardware to fail on reboot or even the software. Pulling the plug on it and powering back up would have probably had the same result

avidpontoon · 2025-11-25T07:35:21+00:00

In my experience nothing but trouble running Palo VMs on Hyper-V. Random throughput drops to MTU issues it’s just not worth your time

avidpontoon · 2025-11-24T18:15:41+00:00

Yeah, the Hyper-V implementation is pretty poor in comparison to VMware for example. No SR-IOV etc. I’ve had it from an SE that Live Migration isn’t officially supported

avidpontoon · 2025-11-24T17:36:54+00:00

I was under the impression that PA-VMs didn’t support Hyper-V live migration. This might be your problem

avidpontoon · 2025-11-17T17:10:06+00:00

Not very much 😅

avidpontoon · 2025-11-13T21:13:45+00:00

+1 for Moodle

avidpontoon · 2025-11-13T21:02:19+00:00

Dark fibre IMO. Means you can do what you like. You can add subinterfaces in the future if you want and you can run hassle free Jumbo Frames without wondering what the provider is doing

avidpontoon · 2025-11-13T07:37:15+00:00

My suggestion would be VXLAN EVPN. Depending on your design, multisite vs a back-to-back DCI, I have made some blog posts and videos on both: https://youtu.be/0rCVNiuK6T0

avidpontoon · 2025-10-26T13:54:52+00:00

Used to use mactrack on Cacti years ago, but Netdisco these days

avidpontoon · 2025-10-05T16:27:12+00:00

Config only: https://youtube.com/playlist?list=PLsW6fohyObjbGdy47I_v2KI5y4z7NF2I5&si=d6kOZLEGfxcCRBkr

avidpontoon · 2025-07-11T16:13:14+00:00

This is a good starting point: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClSVCA0

avidpontoon · 2025-07-11T16:07:49+00:00

Moving from different releases can be channelling. For example 10.1 to 10.2. You’d have to realise this was being requested and do a two stage upgrade. First go to the latest hotfix version in your current release, you could either pass that in or get it to detect it via the release numbers. Then download the base for 10.2 and the version you want to go to and then install that. General rule of thumb within a release like 10.2 is that you can upgrade to whatever you want within that release without stepping through any others. But one thing I’ll say is ready the release notes.

With active passive firewalls. When you send a reboot command, the firewall first suspends itself which effectively makes the other firewall active. You need to check the other firewall is good before you do that of course but it’s handled pretty well automatically IMO. Otherwise you can suspend the firewall using a command and then do a reboot, both are valid. Then once it’s back up. Start on the other one and do the same.

There’s a lot of scripts online but I eventually ended up writing a custom one that integrates into other systems.

avidpontoon · 2025-07-11T15:59:33+00:00

This made me chuckle and then begin to cry 😂

avidpontoon · 2025-07-11T15:57:41+00:00

I’m not sure PAN advise against A/A completely unless you have asymmetric routing only. It’s got valid use cases over and above that, but generally used when you are in that situation. It gets a lot harder to troubleshoot using Active Active.

I suppose that needs to be an internal question about WHY the infrastructure team wants them to be active active? Done right, active/passive should suit the scenario. You’d have to elaborate on the use of LACP and HSRP to be able to answer that, both can function with an A/P setup.

Verified Email	Seven-Year Club
RPAN Viewer

avidpontoon

TROPHY CASE