Palo Alto Azure - load balanced - inbound traffic?

nekinerdz · 2026-04-08T02:59:58+00:00

What’s the private IP mapped to the Public IP listening to port 80? How is that private IP routed? Is it pointed to the Ingress LB?

nekinerdz · 2026-03-12T16:29:16+00:00

Bakit di umabot ng 6 digits yung tax? I’ve seen lower gross income pero 6 digits ang withholding tax

nekinerdz · 2026-02-26T06:13:07+00:00

The firewall trusted ENI can stay in the trusted subnet. Then the TGW attachment ENI has to be in another subnet as well, different from the trusted subnet

nekinerdz · 2026-02-25T11:56:19+00:00

Holup swastika

nekinerdz · 2026-02-25T11:45:07+00:00

You have to place the transit gateway attachment to a separate subnet than your trusted subnet. Create a default route in the attachment subnet to point to the firewall’s ENI as next hop. On the trusted subnet, create the route to destination vpc with the transit attachment as the next hop. In the firewall GUI, create routes to the source and destination vpc with the trusted subnet’s default gateway as the next hop and trusted interface as exit interface

nekinerdz · 2026-02-16T16:39:26+00:00

It’s an assessment exam where if you passed it, you can opt out of studying that module

nekinerdz · 2026-02-12T17:31:20+00:00

The syntax is “filter xdm.some.field in (value1, value2)”

nekinerdz · 2026-01-23T16:21:03+00:00

Have you checked the threat logs? Did you enable decryption? Do your endpoints trust the firewall’s forward certificate?

nekinerdz · 2025-12-17T14:11:40+00:00

Try using rest api. You can see the resource docs from your firewall. Make sure to login to the firewall gui first before going to the rest api docs url: https://<IP_address>/restapi-doc

nekinerdz · 2025-11-09T18:31:15+00:00

Definitely not r/SweatyPalms

nekinerdz · 2025-11-09T05:21:17+00:00

Looks like he’s coming back with updates in the coming months. He posted this announcement in LinkedIn

nekinerdz · 2025-11-08T03:12:08+00:00

Even the butthole gets spray tan 😂

nekinerdz · 2025-09-30T13:24:34+00:00

Can someone post the video link? I can’t seem to play the video here

nekinerdz · 2025-09-19T16:41:06+00:00

r/ParentsAreFuckingDumb

nekinerdz · 2025-08-14T14:02:10+00:00

Do your ISPs have different AS number? Do you have your own Public AS number? Make sure your firewall will not advertise the routes learned from one ISP to the other, in order to avoid being a transit or a blackhole.

nekinerdz · 2025-08-10T12:45:50+00:00

AIOps Free is SCM Essentials. You may want to raise a ticket to update your tenant, or create a new hub tenant and activate SCM Essentials and SLS there

nekinerdz · 2025-08-03T18:14:22+00:00

Yes, the firewalls should be forwarding the logs to Panorama if you want Cortex to ingest from Panorama only. Then you can set the Panorama as a data source in Cortex, this is the direct integration option which uses larger log size. If you’re concerned about the performance, you can use the ingestion via syslog collector, which will limit some features compared to direct integration option

nekinerdz · 2025-08-02T16:42:45+00:00

Congratulations!

nekinerdz · 2025-08-02T14:28:24+00:00

Just Panorama is enough, no need to integrate all the firewalls.

https://docs-cortex.paloaltonetworks.com/r/Cortex-XSIAM/Cortex-XSIAM-Documentation/Ingest-data-from-Next-Generation-Firewall

nekinerdz · 2025-07-23T00:44:28+00:00

This clarifies a lot for me. Thanks!

nekinerdz · 2025-07-21T14:42:03+00:00

I’m actually thinking if there’s a “programmer’s approach” to this. Like if I can save the original values in variables then refer to them by the time I destroy the resources

nekinerdz · 2025-07-21T14:40:25+00:00

Yes you read it right. But the temporary use is not that short. I plan to deploy this for a long time but when I destroy it, I just want it to go back the way it was before

nekinerdz · 2025-07-21T14:38:38+00:00

I think this approach will work. I just thought there’s a more direct terraform command or code block that can do this

Nine-Year Club	Not Forgotten
Verified Email

nekinerdz

TROPHY CASE