First of all please accept my apologies if this question is boring for some of you. I'm new to Network Security world and I need some guidance and additional details around licensing. What I want the fws to do is quite simple but the licensing always makes things difficult if you're new to Palo world.
I was looking to recommend to a customer to buy a pair of two PA-440 for a new office (might have to buy a few more for another 10 offices). I want to configure them in HA Active/Passive, build a site to site VPN to AWS out of them, configure Global Protect and also have threat prevention.
Do I need a specific license type to achieve that? If yes, does it have to be renewed every year for example or is it perpetual ?
I am familiar with Cisco licensing but not at all with Palo.
Thanks a lot!
Hi @PancakesGO ,
Thank you for posting! All questions/concerns are truly welcome. Palo does not require a license for S2S tunnels or high-availability. It sounds like you will maybe need a GlobalProtect license and a threat prevention license and this will be renewed each year. I would recommend speaking with your account manager to view the various SKUs we have for licensing.
Global Protect license or not:
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!