Palo Alto Initial Setup

This will follow the process to setup a PA in HA active/active. Topology will be provided.

A web interface will need to be used to access this device. Preferably the same one as the local lan for the MGMT ports. These interfaces will only be used for MGMT and HA peering.

You will need to find a PAVM qcow2 image from a source. I will be providing my node json file. If it is modified too limited resources can cause the web UI to not load the login prompt and only the background.

Lab download:

Node download:


*PORT DIAGRAM*

PA devices will need to have the network MGMT ports connected to either an 'external connector' that can pull an IP on a web accessible network or on a desktop device in the lab that can be web accessible.

Start the PA devices, they will take up to 20m to startup. They will not allow login until they get past the second login that states:

admin@PA-VM>

It will state it is incorrect when it is not.

When starting up it will prompt to login then prompt to change the password. Default credentials are admin/admin. Do not start the process on UI and finish this process on CLI. It will softlock into forcing another password change.


From here we can login to the web UI and you will need to use https.



You will need to navigate to widgets>system>HA cluster to show the HA panel



Popular posts from this blog

  This will be a follow along for studying the ENCOR and any exams that follow. As well as any misc information that relates such as python scripting etc. The first portion will be basic notes that I decided needed to be my base. This includes but isn't limited to topics such as basic network principles, the layer 2 process, SSH setup, IOS upgrades. This first section will most likely align with the CCENT. I will focus on Cisco for the time being, but I would like to get into Junos (OS?) and Aruba OS. Syntax and basic info on documentation Syntax for commands will be as follows: Any portion of the command with "example" should be an object that you can change. For example, in the line ip vrf "name" the portion "name" is a name you can give to identify this specific vrf. At times this "example" will identify an identifier you can change or an option that is needed for input, but it will always denote something that is configurable. The descrip...
Read more