Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Scribd Logo
Upload

Welcome to Scribd!

  • 216 views

    Lab 1 Connect To The Management Network

    Uploaded by

    Ankita Singh
    The document provides instructions for connecting to the management interface of a Palo Alto Networks firewall and configuring basic settings. The tasks covered include: 1) Loading a starting configuration file 2) Configuring DNS and NTP servers 3) Setting the domain, time zone, and login banner 4) Modifying the management interface configuration

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd

    Lab 1 Connect To The Management Network

    Uploaded by

    Ankita Singh
    216 views18 pages
    The document provides instructions for connecting to the management interface of a Palo Alto Networks firewall and configuring basic settings. The tasks covered include: 1) Loading a starting configuration file 2) Configuring DNS and NTP servers 3) Setting the domain, time zone, and login banner 4) Modifying the management interface configuration

    Original Title

    Lab 1 Connect to the Management Network

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    The document provides instructions for connecting to the management interface of a Palo Alto Networks firewall and configuring basic settings. The tasks covered include: 1) Loading a starting configuration file 2) Configuring DNS and NTP servers 3) Setting the domain, time zone, and login banner 4) Modifying the management interface configuration

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    216 views18 pages

    Lab 1 Connect To The Management Network

    Uploaded by

    Ankita Singh
    The document provides instructions for connecting to the management interface of a Palo Alto Networks firewall and configuring basic settings. The tasks covered include: 1) Loading a starting configuration file 2) Configuring DNS and NTP servers 3) Setting the domain, time zone, and login banner 4) Modifying the management interface configuration

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    of 18

    PALO ALTO NETWORKS – EDU 210

    Lab 1: Connect to the Management Network

    Document Version: 2022-07-18

    Copyright © 2022 Network Development Group, Inc.


    www.netdevgroup.com

    NETLAB+ is a registered trademark of Network Development Group, Inc.

    Palo Alto Networks and the Palo Alto Networks logo are trademarks or registered trademarks of Palo Alto Networks, Inc.
    Lab 1: Connect to the Management Network

    Contents
    Introduction ................................................................................................................................................ 3
    Objective ..................................................................................................................................................... 3
    Lab Topology ............................................................................................................................................... 4
    Theoretical Lab Topology ............................................................................................................................ 4
    Lab Settings ................................................................................................................................................. 5
    1 Connect to the Management Network............................................................................................... 6
    1.1 Load Lab Configuration ................................................................................................................ 6
    1.2 Configure the Update Server and DNS Server ........................................................................... 11
    1.3 Configure General Settings of the Firewall ................................................................................ 13
    1.4 Modify the Management Interface............................................................................................ 14
    1.5 Check for New PAN-OS Software ............................................................................................... 16

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 2


    Lab 1: Connect to the Management Network

    Introduction

    Your organization has just received a new Palo Alto Networks firewall, and you have been tasked with
    deploying it. The first steps will be to connect to the firewall's management interface address and
    configure basic settings to provide the firewall with network access.

    In this lab, you will connect to the Palo Alto Networks firewall management interface and configure
    basic settings to provide the firewall with network access.

    Objective

    In this lab, you will perform the following tasks:

     Connect to the firewall web interface


     Load a starting lab configuration
     Set DNS servers for the firewall
     Set NTP servers for the firewall
     Configure a login banner for the firewall
     Configure permitted IP addresses for the firewall management
     Check for new PAN-OS software

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 3


    Lab 1: Connect to the Management Network

    Lab Topology

    Theoretical Lab Topology

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 4


    Lab 1: Connect to the Management Network

    Lab Settings

    The information in the table below will be needed to complete the lab. The task sections below
    provide details on the use of this information.

    Virtual Machine IP Address Account Password


    (if needed) (if needed)

    Client 192.168.1.20 lab-user Pal0Alt0!

    DMZ 192.168.50.10 root Pal0Alt0!

    Firewall 192.168.1.254 admin Pal0Alt0!

    VRouter 192.168.1.10 root Pal0Alt0!

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 5


    Lab 1: Connect to the Management Network

    1 Connect to the Management Network

    1.1 Load Lab Configuration

    In this section, you will load the Firewall configuration file.

    1. Click on the Client tab to access the Client PC.

    2. Double-click the Chromium Web Browser icon located on the desktop.

    3. In the Chromium web browser, click on the EDU-210 bookmark folder in the bookmarks bar and
    then click on Firewall-A.

    4. You will see a "Your connection is not private" message. Next, click on the ADVANCED link.

    If you experience the “Unable to connect” or “502 Bad Gateway”


    message while attempting to connect to the specified IP above, please
    wait an additional 1-3 minutes for the Firewall to fully initialize.
    Refresh the page to continue.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 6


    Lab 1: Connect to the Management Network

    5. Click on Proceed to 192.168.1.254 (unsafe).

    6. Log in to the firewall web interface as username admin, password Pal0Alt0!.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 7


    Lab 1: Connect to the Management Network

    7. Navigate to Device > Setup > Operations in the web interface and click on Load named
    configuration snapshot underneath the Configuration Management section.

    8. In the Load Named Configuration window, select edu-210-lab-01.xml from the Name dropdown
    box and click OK.

    9. In the Loading Configuration window, a message will show Configuration is being loaded. Please
    check the Task Manager for its status. You should reload the page when the task is completed. Click
    Close to continue.

    10. Click the Tasks icon located at the bottom-right of the web interface.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 8


    Lab 1: Connect to the Management Network

    11. In the Task Manager – All Tasks window, verify the Load type has been completed. Click Close

    12. Click the Commit link located at the top-right of the web interface.

    13. In the Commit window, click Commit to proceed with committing the changes.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 9


    Lab 1: Connect to the Management Network

    14. When the Commit operation completes, click Close to continue.

    The commit process takes changes made to the Firewall and copies
    them to the running configuration, which will activate all configuration
    changes since the last commit.

    15. Leave the Palo Alto Networks Firewall open and continue to the next task.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 10


    Lab 1: Connect to the Management Network

    1.2 Configure the Update Server and DNS Server

    In this section, you will configure the DNS and Update Server settings. The DNS server configuration
    settings are used for all DNS queries that the firewall initiates in support of FQDN Address objects,
    logging, and firewall management.

    1. In the web interface, select Device > Setup > Services. Click the Services gear icon to open the
    Services window.

    2. In the Services window, verify that the Update Server is set to updates.paloaltonetworks.com.
    Set the Primary DNS Server to 8.8.8.8 and the Secondary DNS Server to 192.168.50.53.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 11


    Lab 1: Connect to the Management Network

    3. Select the NTP tab. Set the Primary NTP Server to 0.pool.ntp.org and the Secondary NTP Server
    to 1.pool.ntp.org. Click OK.

    4. Verify the settings have been updated in the Services window.

    5. Leave the Palo Alto Networks Firewall open and continue to the next task.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 12


    Lab 1: Connect to the Management Network

    1.3 Configure General Settings of the Firewall

    In this section, you will configure the general settings of the Palo Alto Networks Firewall. You will verify
    the Domain, set your location's time zone, and set a login banner.

    1. Navigate Device > Setup > Management. Click on the General Settings gear icon to open the
    General Settings window.

    2. In the General Settings window, verify the Domain listed is lab.local. For the Login Banner, enter
    Authorized Access Only. Choose the Time Zone of your location. For this lab, we chose to use
    Etc/UTC as the Time Zone. Click OK.

    3. Leave the Palo Alto Networks Firewall open and continue to the next task.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 13


    Lab 1: Connect to the Management Network

    1.4 Modify the Management Interface

    In this section, you will modify the management interface of the firewall.

    1. Navigate to Device > Setup > Interfaces and click on interface name Management.

    2. In the Management Interface Settings window, verify 192.168.1.254 for the IP Address,
    255.255.255.0 for the Netmask, and 192.168.1.1 for the Default Gateway. At the bottom of the
    Permitted IP Addresses area, click Add.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 14


    Lab 1: Connect to the Management Network

    3. In the Permitted IP Addresses, type 192.168.1.20/24 for the IP Address and MGT access from
    this host only for the description. Click OK.

    4. Leave the Palo Alto Networks Firewall open and continue to the next task.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 15


    Lab 1: Connect to the Management Network

    1.5 Check for New PAN-OS Software

    In this section, you will check for new PAN-OS software and commit your changes.

    1. In the PA-VM web interface, navigate to Device > Software. If needed, use the scroll bar to find
    Software.

    2. In the Software window, click Check Now in the bottom-left corner.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 16


    Lab 1: Connect to the Management Network

    3. The Palo Alto Networks Firewall will complete a software check. Monitor the software check, and
    when the process is complete, the firewall will display an updated list of available software.

    The list you see will vary from this example. Also, newer versions of
    PAN-OS software may be available at the time you carry out these
    steps. Do not upgrade your firewall.

    4. Commit your changes to the firewall by clicking the Commit button at the upper-right of the PA-VM
    web interface.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 17


    Lab 1: Connect to the Management Network

    5. In the Commit window, view the commit scope. Click Commit.

    6. Wait until the Commit process is complete. Click Close.

    7. The lab is now complete; you may end your reservation.

    7/18/2022 Copyright © 2021 Network Development Group, Inc. www.netdevgroup.com Page 18

    You might also like