Virtual private networks (VPNs) create tunnels that enable users and systems to connect securely over a public network. A VPN connection that allows you to connect two Local Area Networks (LANs) is called a site-to-site VPN. You can configure route-based VPNs to connect Palo Alto Networks firewalls at two sites or to connect a Palo Alto Networks firewall to a third-party security device at another location.
Describe the three basic requirements for creating a VPN
Configure the interface, IP addresses, and pre-shared key (PSK) for the IKE gateway
Configure the Diffie-Hellman (DH) group, encryption methods, and authentication methods for an IKE cryptographic profile
Configure a static route in the route table for the tunnel
Troubleshoot your IPsec VPN issues from the responder side of the VPN tunnel
This course is intended for security engineers, security administrators, security operations specialists, security analysts, and support staff who want to learn how to extend their next-generation firewall and configure a VPN tunnel between sites.