Scribd Logo
Upload

Welcome to Scribd!

  • 96 views

    VM Presentation

    Uploaded by

    oshin charu
    lob

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd

    VM Presentation

    Uploaded by

    oshin charu
    96 views29 pages
    lob

    Copyright

    © © All Rights Reserved

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    lob

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Download as pptx, pdf, or txt
    96 views29 pages

    VM Presentation

    Uploaded by

    oshin charu
    lob

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Download as pptx, pdf, or txt
    of 29

    Palo Alto Firewall – VM Installation

    06/17/2014
    Hardik Dinendra Shah
    Agenda
    • PANW Role in ESXi
    • ESXi Installation
    • Palo Alto Networks VM Installation
    • VM Licensing

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    PANW Role in ESXi

    • Issue with Traditional Data Center


    • Buy H/W, S/W
    • Cabling
    • Racking
    • Cooling
    • buy more H/W in case of expansion.
    • Same H/W is useless if data usage
    goes down.
    • Its time consuming process.

    3 © 2011 Palo Alto Networks. Proprietary and Confidential.


    PANW Role in ESXi

    • Procure Servers in no time


    • No Cabling
    • No Racking
    • Can use H/W for other purpose

    4 © 2011 Palo Alto Networks. Proprietary and Confidential.


    PANW Role in ESXi - 2
    • Security through PANW

    5 © 2014 Palo Alto Networks. Proprietary and Confidential.


    Basics

    6 © 2014 Palo Alto Networks. Proprietary and Confidential.


    ESXi Installation
    • ESXi General Information
    • ESX – Elastic Sky X
    • ESXi – it’s a compact version of ESX(There are many other Differences)
    • http://en.wikipedia.org/wiki/VMware_ESX
    • Hypervisor : Allows other guest operating system to install on its resources
    • Tier1 (ESXi,etc – Works on HP/DELL )
    • Tier2 (Vmware Workstation and VirtualBox)
    • http://en.wikipedia.org/wiki/Hypervisor
    • Minimum Requirement for ESXi Server
    • DUAL Core CPU & 2 GB of RAM
    • Processor should support VT-XPA Or AMD-RVI Technology

    7 © 2014 Palo Alto Networks. Proprietary and Confidential.


    ESXi Installation
    • ESXi Installation
    • Download ESXi ISO image from Vendors site
    • www.hp.com/go/esxidownload
    • Connect Monitor, key board & Mouse to ESXi Server
    • Put DVD in Drive
    • Very easy installation from here – Just like windows XP
    • https://www.youtube.com/watch?v=ZBl1Tf2A4lA
    • Assign IP to ESXi Server – Easy to configure

    8 © 2014 Palo Alto Networks. Proprietary and Confidential.


    ESXi Installation
    • How to configure ESXi
    • https://<ESXi>
    • Download Vsphere
    • Connect to ESXi via Vsphere

    9 © 2014 Palo Alto Networks. Proprietary and Confidential.


    Palo Alto Networks VM Installation

    • VM Installation
    • Go to https://support.paloaltonetworks.com/Updates/SoftwareUpdates/245
    • download Phoenix-5.0.0.zip or PA-VM-6.0.0.zip
    • uncompressed it – it should have .ovf file.
    • Installation is Simple process
    • Assign Management IP once its up

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    0
    Palo Alto Networks VM Installation
    • Interfaces remains down, until its configured

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    1
    Palo Alto Networks VM Installation
    • MAC Addresses Before License

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    2
    VM – Switch Logic
    • PAN VM – 1 Management – 9 Data Interfaces

    • PAN VM Logical View:

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    3
    VM – How ports are mapped on ESXi
    • ESXi has only two ports
    • One port is used for Management of ESXi, PAN-VM,etc
    • Other port has multiple VLANs, Each mapped with a VLAN. Its logically a trunk
    port.

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    4
    VM – Create VLANs on ESXi

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    5
    VM – Create VLANs on ESXi

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    6
    VM-Create VLANs on ESXi

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    7
    VM- Assign VLAN to VM

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    8
    VM- Assign VLAN to VM

    1 © 2014 Palo Alto Networks. Proprietary and Confidential.


    9
    How to Apply License to VM?
    • VM Licensing is little different than regular licensing
    • VM doesn’t have the Serial No.
    • VM can not pull license from Server
    • It has to be applied Manually

    • License Sample

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    0
    License – Register with Portal

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    1
    License – Register with Portal

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    2
    License – Entitlement Server

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    3
    License – Download Key

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    4
    License
    • It Reboots after licensing

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    5
    License – MAC addresses
    • After licenses interface MAC address changes

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    6
    License – MAC addresses

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    7
    Promiscuous Mode

    • If Promiscous mode is one, and MAC address


    change is ON, You dont have to change MAC
    address Manually.
    • If Promiscous mode is off, than only option is
    to enable MAC address change
    Questions ?

    2 © 2014 Palo Alto Networks. Proprietary and Confidential.


    9

    You might also like