3. VPN IPSEc Site To Site Hub Spoke, Dynamic IP address example So in this lecture we will talk about how to deal with VPN tunnels behind dynamic IP addresses. So let’s say this Palo Alto firewall is behind dynamic IP address. It’s a 4G behind a 4G router and it gets different IP addresses. […]

1. VPN IPSEC L2L intro and configuration steps In this lecture we will talk about the Palo Alto Firewall VPN capability. Three setup supported in the Palo Alto Firewall VPN you have site to site and that side to side utilizes IPsec for traffic protection and then you have the Remote User support, remote VPN, […]

6. Bandwidth Throttling IPSEc tunnels demo The next thing we have to do is look at the QoS traffic QoS policy. We can include the IPsec tunnels. So if we go to QoS we’re going to add a QS profile so that’s the outside interface. And then we’re going to use the default, default for […]

3. QoS Classification and Marking On any given network there is multiple applications and services running. The concept of quality of service is to provide different service levels based on how important are the packet or the session. So some applications requires low latency queuing, for example like voice, some applications require allocated bandwidth and […]

1. QoS Introduction In this lecture we’ll talk about quality of service. Quality of service goals is to prioritize and adjust quality aspects of your network traffic. You can control the order in which packets are handled and what bandwidth is allocated for specific traffic applications and user. The way you measure the measurement that […]

1. Panorama concepts, hardware, template and template stack In this lecture we’ll talk about Panorama. And Panorama is the management platform for Palo Alto Firewalls and it allows you to do multiple things. First thing is centralized configuration and deployment and deployment. So instead of logging into each firewall and configuring the firewall itself, you […]

8. Global Protect Always On User-Logon and Pre-Logon configuration So in this lecture we will see how to configure global protect to do pre logon. Basically what pre logon does is when the machine boots up it automatically connects to global protect. So we can achieve this by using the prelogon settings. Preloadon allows you […]

6. Installing CA services on windows, certificate enrollment policy service, OCSP Okay, so now we’re going to set up the certificate services on the domain controller in AWS to provide certificate for the workstation and the lab. So this way we can test things like certificate authentication on Global Protect. So we’re going to go […]

4. Dual Factor Authentication Using Open Source Solution PrivacyIdea – demo In this lecture we will see how to configure the Palo Alto Firewall and also configure our lab to use something called Privacy Idea, which allows you to do dual factor authentication with a lot of different types of token including the Google Authenticator […]

1. Global Protect Setup example In this lecture we’ll talk about the global Protect. The Global Protect is the VPN client from the Palo Alto Firewall. The global Protect consists of three components, the global protect portal and global protect gateway and the global Protect client. The global protect portal is the reference point for […]