Getting Started: Palo Alto Networks Firewall Series

L7 Applicator

A series of articles to help with your new Palo Alto Networks firewall from basic setup through troubleshooting.

 

Your new Palo Alto Networks firewall has arrived! What next?

 

To help you enjoy the full potential of the Palo Alto Networks firewall, we've got a series of helpful articles and videos for customers and users like you. No matter what level of expertise you have, we think you'll find some tips and tricks that ensure optimal use and enjoyment of your firewall.

 

The first series covers the basics of getting your device booted up, the management interface configured, the licences activated, content files updated, and software upgraded to the latest version. We then take a look at several interface configuration options, security and NAT policies, and look at how logging works.

 

Check out what this series brings you—

 

Getting started with the Palo Alto Networks firewall

Getting Started: Setting Up Your Firewall

Getting Started: Layer 3, NAT, and DHCP

Getting Started: Layer 3 Subinterfaces

Getting Started: Logging

 

Also check out the Video Tutorials:

 

Video Tutorial: Getting Started — Setting Up Your Firewall

Video Tutorial: Getting Started — Layer 3, NAT, and DHCP

Video Tutorial: Getting Started — Network Address Translation

 

See the Getting Started Playlist on YouTube, including basic to advanced URL filtering

 

The second series installment covers more topics, from basic configuration to advanced concepts:

 

Getting Started: Layer 2 interfaces

What more can my firewall do? Quality of Service

Getting Started: Virtual Private Networks (VPNs)

Getting Started: User-ID

Getting Started: Custom Reports

Getting Started: Policy Based Forwarding

Getting Started: Custom applications and app override

Getting Started: Log Forwarding

Getting Started: Firewall as a PPPoE or DHCP Client

Getting Started: Network Address Translation

 

The third installment covers how to go about troubleshooting the firewall and identifying issues:

 

Let me fix that for you: Packet Captures

Let me fix that for you: Flow Basic 

 

 

Can't get enough and want more? 

 

If you're just getting started with cybersecurity, take a look at a few topics in our Cyberpedia What Is Cybersecurity?

 

Feel free to reach out in the comment section below.

 

Spread the word and stay secure!

 

Tom

80,314 Views
Comments
L0 Member

I am enrolled in the Firewall Configuration Essentials 101 course and I am really worried, I do not understand how to do Lab.2, I do not even know how to start. I worry, I think this level is too much for me! I want to excel, I want to become a competent and qualified administrator ... but at this moment, I do not know where to start?
Suggestions, please!

61,141 Views
L0 Member

My main question is about how to work Lab 02, since I do not have the equipment (PA-200), and I do not know if there is a virtual platform on which to work the points of the laboratory. Could you explain me about it?

61,103 Views
L0 Member

Is there a guide for configuring dual internet with HA pair of firewalls?  I have 2 internet connections, I bought 2 PA-220s.  I found a guide for running 2 firewalls with 1 internet and a guide for running 2 internet with 1 firewall but not a guide for running 2 internet with 2 firewalls.

50,708 Views
L0 Member

Señores requiero de su conocimiento y ayuda, no me permite ingresar a mi firewall PA200, desde hace un par de horas el mismo mensaje:  Session timed out. Ya lo reinicie y sigue igual.

 

Saludos

48,675 Views
L7 Applicator

@adn2787 sorry for the late reply!

If you do not have the equipment, you can either spin up a free trial through the Fuel User Groups: https://www.fuelusergroup.org/page/fuel-virtual-test-lab-8.0: This trial only allows a limited amount of time of use

There are also free trials available through AWS but you do need to pay for the AWS uptime

 

I don't have the details of lab 2, but the 'getting started' above are more or less sorted from the very start and getting more complex the further down the list you go, so I would recommend you start at the first article and see if it helps, then move to the next

it will likely follow more or less the same cadence as the training material

 

@mikeuser23112 : i'd recommend (this is best practice) starting off by configuring both ISP on a single firewall (use PBF to direct traffic so you can use both ISP at the same time) , then putting the firewall in cluster. You now have a completely redundant setup: if ISP1 fails, firewall1 will remain operational and simply switch to ISP2, if firewall1 fails, firewall2 will still be able to use ISP1. I strongly recommend against configuring 1isp per firewall as this will not produce a desirable scenario (each potential failure causes a cascade, bandwith usage is not optimzed,..)

 

@franp2013 Lo siento, pero tendrá que hacer esta pregunta a través de soporte

39,743 Views
L2 Linker

Hi!

 

@reaper I remember this being great links to start learning. However, all links here are broken... Looks like there are in the process of migrating it to a knowledge base. It justs redirects to https://live.paloaltonetworks.com/  and if you click on the getting started series, well it redirects again back here. Do you have a link where I can have all the links of this information?

 

Thanks in advance.

17,720 Views
Community Team Member

@Edwardo, so sorry for the confusion here..   About the broken links, please allow me to get these working for you.

Please give us a day and I will get this resolved asap.

17,502 Views
Ask Questions Get Answers Join the Live Community
Labels