Saucepan

User Tools

Site Tools

Trace: multicast aws globalprotect_versions firewall_resources firewall-hardware oracle
paloaltonetworks:vmseries:aws

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
paloaltonetworks:vmseries:aws [2020/05/18 13:33] bstaffordpaloaltonetworks:vmseries:aws [2022/11/23 12:49] (current) – external edit 127.0.0.1
Line 1: Line 1:
 ====== AWS ====== ====== AWS ======
-[[https://www.paloaltonetworks.com/documentation/80/virtualization/virtualization/set-up-the-vm-series-firewall-on-aws/deploy-the-vm-series-firewall-on-aws/launch-the-vm-series-firewall-on-aws|This]] page is excellent for deploying Palo. 
  
-In particular, after deploying the Palo instance, you will need to use SSH to access the CLI to set the Admin password. This will allow you to access the web GUI.+[[https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-the-vm-series-firewall-on-aws.html|This]] page is excellent for deploying Palo.
  
-  * Once the instance is running, connect to it using a SSH client with the private key file used to launch the instance.  +===== Getting Initial Access to Firewall in AWS ===== 
-  For example''ssh -i <privatekey.pem> admin@<EIP or private IP of eth0>'' + 
-  Then use the PAN-OS CLI commands  +After deploying the Palo Alto Networks VM firewall instance, you will need to use SSH to access the CLI to set the password for the ''admin'' account. This will allow you to access the web GUI. 
-    * Unordered List Item<nowiki>configure</nowiki> + 
-    * <nowiki>set mgt-config users admin password</nowiki> +Once the instance is running, connect to it using a SSH client with the private key file defined when you launched the instance. 
-    * <nowiki>commit</nowiki>+ 
 +For example ''ssh -i <privatekey.pem> admin@<public IP of eth0>'' 
 + 
 +Then use the PAN-OS CLI commands  
 +    - ''configure'' 
 +    - ''set mgt-config users admin password'' 
 +    - ''commit''
  
 If you are using Putty, you will need to convert the PEM key file to PPK. If you are using Putty, you will need to convert the PEM key file to PPK.
Line 20: Line 25:
   - Your private key is now in the correct format for use with PuTTY. You can now connect to your instance using PuTTY's SSH client.    - Your private key is now in the correct format for use with PuTTY. You can now connect to your instance using PuTTY's SSH client. 
  
-'''Note''': A passphrase on a private key is an extra layer of protection, so even if your private key is discovered, it can't be used without the passphrase. The downside to using a passphrase is that it makes automation harder because human intervention is needed to log on to an instance, or copy files to an instance.+**Note**: A passphrase on a private key is an extra layer of protection, so even if your private key is discovered, it can't be used without the passphrase. The downside to using a passphrase is that it makes automation harder because human intervention is needed to log on to an instance, or copy files to an instance. 
 + 
 +===== Panorama AWS ===== 
 +Panorama 10.0 is happy with 8 CPU and 32 GB RAM when in Panorama mode. However, when you go to 10.1, it wants 16 CPU. 
 + 
 +Mid 2022 
 +  * m4.2xlarge (8vCPU, 32GB) for ~ $325 per month 
 +  * m4.4xlarge (16vCPU, 64GB) for ~ $650 per month
  
paloaltonetworks/vmseries/aws.1589808805.txt.gz · Last modified: (external edit)