Coming soon - Get a detailed view of why an account is flagged as spam!
view details

This post has been de-listed

It is no longer included in search results and normal feeds (front page, hot posts, subreddit posts, etc). It remains visible only via the author's post history.

2
I need to purposely expose a device externally
Post Flair (click to view more posts with a particular flair)
Question
Post Body

What's the best way to have a device completely exposed externally?

I have a security device that acts as a decoy, that will then block traffic based on what is done to the decoy. (It uses port scan's, and any connections to it as metadata to determine if the connection is a bad actor) It also monitors the traffic coming from the internet as well. So the good filtering the Palo does could actually degrade it's ability to determine a bad actor.

I'm wondering do I create a separate zone just that interface, and nat it over, and allow all traffic no filters?

Can/Should I do something with virtual wires (which I've never used)

Any other suggestions? I only have 1 connection to the ISP, and if I put a switch in before the Palo it causes other issues.

Author
Account Strength
100%
Account Age
6 years
Verified Email
Yes
Verified Flair
No
Total Karma
8,235
Link Karma
565
Comment Karma
7,560
Profile updated: 3 days ago
Posts updated: 2 months ago
jkw118

Subreddit

r/paloaltonetworks

Post Details

We try to extract some basic information from the post title. This is not always successful or accurate, please use your best judgement and compare these values to the post title and body for confirmation.
Posted
1 year ago
Reddit URL
View post on reddit.com
External URL
reddit.com/r/paloaltonet...