This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Mulit-Vsys setup with Wildfire

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Content translations are temporarily unavailable due to site maintenance. We apologize for any inconvenience. Visit our blog to learn more.

Mulit-Vsys setup with Wildfire

sandeepsutar
L0 Member

‎12-29-2024 10:57 PM

Hi Friends,

 

We are planning for a multi-vsys PA setup, where one vsys will have only L3/L4 policies and second vsys will be in L2 bridge mode with Threat prevention features only.

Vsys1 will only scan L3/L3 policies while vsys2 will scan traffic for any threats.

We believe this is logically possible solution, need some clarity on integrating Wildfire appliance in this architecture. Wildfire will be connected via 1 Mgmt and 1 VM interface, and it will be interfaced in vsys2 (bridge mode).

Just needed your inputs, if this setup is workable, if yes, can bridge mode vsys forward traffic to wildfire through its Mgmt interfaces for unknown files sampling?

Appreciating your valuable inputs.

 

Regards,

Sandeep

 

0 Likes Likes
1 REPLY 1

victoria88paul
L1 Bithead

‎01-03-2025 03:45 AM

Hi Sandeep,

Your proposed setup sounds logical and feasible. Integrating the WildFire appliance into this architecture is indeed possible. Here are some key points to consider:

Interface Assignment: Ensure that the WildFire appliance is correctly connected via the Management (Mgmt) and VM interfaces. This setup will allow it to receive traffic for analysis1.

Bridge Mode vsys: Since vsys2 is in L2 bridge mode, it can forward traffic to the WildFire appliance. However, it's important to ensure that the traffic forwarding is configured correctly to send unknown files for sampling1.

Traffic Forwarding: Yes, the bridge mode vsys can forward traffic to WildFire through its Management interfaces for unknown file sampling. Make sure that the necessary policies and rules are in place to allow this traffic forwarding.

Configuration: Verify that the WildFire appliance is properly configured to receive and analyze the forwarded traffic. This includes setting up the appropriate interfaces and ensuring that the appliance is integrated into your overall security architecture.

0 Likes Likes
  • 188 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks