vm-series-deployment.pdf资源-CSDN文库

需积分: 5 150 浏览量 2023-10-27 01:20:48 上传评论收藏 44.84MB PDF 举报

资源推荐

资源详情

资源评论

VM-Series Deployment Guide

Version 10.2

docs.paloaltonetworks.com

Table of Contents

About the VM-Series Firewall...................................................................... 15

VM-Series Deployments..........................................................................................................16

VM-Series in High Availability............................................................................................... 17

Upgrade the VM-Series Firewall........................................................................................... 19

Upgrade the PAN-OS Software Version (Standalone Version)...........................19

Upgrade the PAN-OS Software Version (HA Pair)................................................21

Upgrade the PAN-OS Software Version Using Panorama...................................25

Upgrade the PAN-OS Software Version (VM-Series for NSX)........................... 28

Upgrade the VM-Series Model.................................................................................. 34

Upgrade the VM-Series Model in an HA Pair........................................................ 36

Downgrade a VM-Series Firewall to a Previous Release..................................... 37

VM-Series Plugin....................................................................................................................... 38

Configure the VM-Series Plugin on the Firewall................................................... 38

Upgrade the VM-Series Plugin...................................................................................39

Enable Jumbo Frames on the VM-Series Firewall............................................................ 42

Hypervisor Assigned MAC Addresses................................................................................. 44

Custom PAN-OS Metrics Published for Monitoring.........................................................46

Interface Used for Accessing External Services on the VM-Series Firewall................48

PacketMMAP and DPDK Driver Support........................................................................... 49

Enable NUMA Performance Optimization on the VM-Series........................................ 51

Enable ZRAM on the VM-Series Firewall........................................................................... 53

License the VM-Series Firewall....................................................................55

VM-Series Firewall Licensing................................................................................................. 56

License Types..................................................................................................................56

Flexible vCPUs and Fixed Model Licensing.............................................................57

Flexible vCPUs and Fixed Model Deployment.......................................................59

Create a Support Account...................................................................................................... 61

Serial Number and CPU ID Format for the VM-Series Firewall.................................... 62

Use Panorama-Based Software Firewall License Management.....................................63

Software NGFW Credits......................................................................................................... 69

Maximum Limits Based on Tier and Memory.........................................................72

Activate Credits..............................................................................................................81

Create a Deployment Profile...................................................................................... 82

Manage a Deployment Profile....................................................................................84

Provision Panorama.......................................................................................................89

Migrate Panorama to a Software NGFW License................................................. 90

VM-Series Deployment Guide Version 10.2 3

2023 Palo Alto Networks, Inc.

Table of Contents

Transfer Credits..............................................................................................................94

Renew Your Software NGFW Credits......................................................................96

Amend and Extend a Credit Pool.............................................................................. 97

Deactivate License (Software NGFW Credits)....................................................... 98

Delicense Ungracefully Terminated Firewalls...................................................... 100

Set the Number of Licensed vCPUs.......................................................................101

Customize Dataplane Cores..................................................................................... 102

Migrate a Firewall to a Flexible VM-Series License............................................103

Software NGFW Licensing API................................................................................107

VM-Series Models.................................................................................................................. 119

VM-Series System Requirements............................................................................120

CPU Oversubscription................................................................................................122

VM-50 Lite Mode....................................................................................................... 123

VM-Series Model License Types............................................................................. 124

Activate VM-Series Model Licenses.......................................................................135

Install a Device Certificate on the VM-Series Firewall...................................... 144

Switch Between the BYOL and the PAYG Licenses...........................................149

Switch Between VM-Series Model Licenses........................................................ 150

Deactivate License(s)..................................................................................................153

Renew VM-Series Firewall License Bundles.........................................................158

Install a License API Key........................................................................................... 160

Licensing API................................................................................................................ 161

What Happens When Licenses Expire?............................................................................ 167

Licenses for Cloud Security Service Providers (CSSPs)................................................. 170

Get the Auth Codes for CSSP License Packages.................................................170

Add End-Customer Information for a Registered VM-Series Firewall............172

Set Up a VM-Series Firewall on an ESXi Server.................................... 177

Supported Deployments on VMware vSphere Hypervisor (ESXi).............................. 178

VM-Series on ESXi System Requirements and Limitations.......................................... 179

VM-Series on ESXi System Requirements............................................................ 179

VM-Series on ESXi System Limitations................................................................. 180

Install a VM-Series firewall on VMware vSphere Hypervisor (ESXi).......................... 181

Plan the Interfaces for the VM-Series for ESXi................................................... 181

Provision the VM-Series Firewall on an ESXi Server..........................................182

Perform Initial Configuration on the VM-Series on ESXi.................................. 185

Add Additional Disk Space to the VM-Series Firewall.......................................186

Use VMware Tools on the VM-Series Firewall on ESXi and vCloud Air........ 188

Use vMotion to Move the VM-Series Firewall Between Hosts.......................189

VM-Series Deployment Guide Version 10.2 4

2023 Palo Alto Networks, Inc.

Table of Contents

Use the VM-Series CLI to Swap the Management Interface on ESXi.............190

VM Monitoring on vCenter..................................................................................................191

About VM Monitoring on VMware vCenter........................................................ 191

Install the Panorama Plugin for VMware vCenter.............................................. 192

Configure the Panorama Plugin for VMware vCenter....................................... 193

Troubleshoot ESXi Deployments........................................................................................196

Basic Troubleshooting................................................................................................196

Installation Issues........................................................................................................ 196

Licensing Issues............................................................................................................198

Connectivity Issues..................................................................................................... 199

Performance Tuning of the VM-Series for ESXi............................................................. 201

Install the NIC Driver on ESXi................................................................................. 201

Enable DPDK on ESXi................................................................................................202

Enable SR-IOV on ESXi..............................................................................................203

Enable ESXi VLAN Access Mode with SR-IOV....................................................203

Enable Multi-Queue Support for NICs on ESXi...................................................204

VNF Tuning for Performance...................................................................................205

Set Up the VM-Series Firewall on vCloud Air........................................219

About the VM-Series Firewall on vCloud Air.................................................................. 220

Deployments Supported on vCloud Air............................................................................ 221

Deploy the VM-Series Firewall on vCloud Air................................................................ 222

Set Up the VM-Series Firewall on VMware NSX-T.............................. 231

Set Up the VM-Series Firewall on VMware NSX-T (North-South).............................232

Supported Deployments of the VM-Series Firewall on VMware NSX-T (North-

South)..............................................................................................................................232

Components of the VM-Series Firewall on NSX-T (North-South)...................233

Deploy the VM-Series Firewall on NSX-T (North-South)..................................234

Extend Security Policy from NSX-V to NSX-T.....................................................248

Set Up the VM-Series Firewall on NSX-T (East-West)..................................................250

Components of the VM-Series Firewall on NSX-T (East-West).......................250

VM-Series Firewall on NSX-T (East-West) Integration...................................... 251

Supported Deployments of the VM-Series Firewall on VMware NSX-T (East-

West).............................................................................................................................. 253

Deploy the VM-Series Using the Operations-Centric Workflow.................... 255

Deploy the VM-Series Using the Security-Centric Workflow..........................273

Delete a Service Definition from Panorama.........................................................303

Migrate from VM-Series on NSX-T Operation to Security Centric

Deployment...................................................................................................................304

Extend Security Policy from NSX-V to NSX-T.....................................................310

Use In-Place Migration to Move Your VM-Series from NSX-V to NSX-T..... 311

VM-Series Deployment Guide Version 10.2 5

2023 Palo Alto Networks, Inc.

剩余1101页未读，继续阅读

评论收藏

内容反馈

mr.card

粉丝: 0
资源: 33

vm-series-deployment.pdf

HCIP-Datacom-SD-WAN Planning and Deployment H12-871 教材V1.0.zip

H12-421HCIP-Data Center Facility Deployment.rar

Beginning-Django-Web-Application-Development-and-Deployment-with-Python.pdf.pdf

helm-v3.8.2-linux-amd64.tar.gz

Python库 | cdk-ecr-deployment-0.0.81.tar.gz

PyPI 官网下载 | aws-cdk.aws-s3-deployment-1.97.0.tar.gz

Ansible-laravel-deployment.zip

alfresco-deployment-484-2.9.3B.jar.zip

Ansible-ansible-rails-deployment.zip

kubernetes-client-1.18.3-darwin-amd64.tar.gz（kubectl下载）

DigitalOcean-Nodejs-Deployment--源码.rar

Python库 | aws-cdk.aws-s3-deployment-1.126.0.tar.gz

FortiGate VM64 for VMware ESXi

Python库 | aws-cdk.aws-s3-deployment-1.46.0.tar.gz

helm-v3.7.2-linux-arm64.tar.gz

PyPI 官网下载 | aws-cdk.aws-s3-deployment-0.30.0.tar.gz

Python库 | aws-cdk.aws-s3-deployment-1.66.0.tar.gz

Python库 | aws-cdk.aws-s3-deployment-1.77.0.tar.gz

ansible-flume-auto-deployment.tar.gz

1_sixyin-music-source-v1.0.7.js

植物大战僵尸杂交版v2.0安装程序.exe

植物大战僵尸杂交版v2.0.zip

洛雪音乐助手自定义音源v1.2.0下载.zip

植物大战僵尸杂交版v2.0.88安装程序.zip

misaka-v3.3.8.zip

TiggerRamDiskV4.2Beta1-Win.zip

大麦抢票_BP全自动抢购教程+注意事项.rar

Flyme10图标包_1.0.0_1.apk

C语言程序设计第四版何钦铭课后习题及答案.pdf

最新资源