SDWAN Free Demo
SDWAN Free Demo
Expert-Led Live Training | 5th April 2025 @6 PM IST
Day
Hr
Min
Sec
Join Now
USD ($)
$
United States Dollar
India Rupee

Configuring Palo Alto Lab: Setup Guide

Created by Amar Singh in Articles 16 Jun 2024
Share
«Checkpoint CCSA Lab Setup: ...

This post will give your detailed overview of how to setup “Initial configuration of Palo Alto” devices via CLI. In this lab topology, we have two palo alto devices, three Cisco routers and a core switch. The windows workstation is for accessing the palo alto GUI.


Palo Alto Lab Setup Initial Configuration Tasks


● Create VLAN 10 in Switch SW01 and assign Interfaces Eth1/0, Eth3/1 and Eth4/0 in access VLAN 10 for establishing management connectivity for PaloAlto01 and PaloAlto02

● Assign Management IP address 10.0.0.10/24 to eth1 on Workstation PC

● Login to PaloAlto01 firewall using default username and password and assign IP address 10.0.0.1/24 on Management Interface and default gateway as 10.0.0.10

● Login to PaloAlto02 firewall using default username and password and assign IP address 10.0.0.2/24 on Management Interface and default gateway as 10.0.0.10

● Make sure to power on the devices and take console, there are no initial configurations in this Palo Alto lab 


Palo Alto Lab Configuration & Verification


Task 1: Here we will use Workstation to manage firewall, interface that we will use for management of firewall.

In the basic connectivity Diagram, we will configure the interfaces on switch for management of firewall. Put interfaces Eth1/0 , Eth3/1 and Eth4/0 in VLAN 50 i.e. Management VLAN. Below diagram shows the configuration on switch for this.

banner image

Task 2: Now configure network adapter on PC for taking management access. Configure below Orange marked adapter with the management address of the firewall.

Note: Please disable Red marked adapter as this interface is for internet access and you may encounter issues during lab-practice.

banner image

Now assign the IP address from the management subnet, in this case it is 10.0.0.10/24, we will not assign Default gateway for this lab-practice.

banner image

Task 3: Now assign the IP address on Palo-Alto01 firewall from Command Line Interface. Just click on the icon on the lab screen and you will get the console access to the firewall.

Now follow below command to initialize the firewall and assign gateway and management IP address. Here is the Palo Alto default user name and password

Username: admin      Password: admin

banner image

Now assign the IP address on Palo-Alto02 firewall from Command Line Interface. Just click on the icon on the lab screen and you will get the console access to the firewall.

Initialize PaloAlto02 with management IP address 10.0.0.2/24, please refer below snapshot.

The command for assigning the IP address and gateway on Palo Alto is set deviceconfig system ip-address 10.0.0.2 netmask 255.255.255.0  default-gateway 10.0.0.10 ( Note: This is how to assign the IP address and gateway on Palo Alto)

Username: admin     Password: admin

banner image

Check the reachability of both firewalls PaloAlto01 and PaloAlto02 from Workstation PC, Now Go to your PC and try to ping firewall from Command Prompt:

Check the reachability of both firewalls PaloAlto01 and PaloAlto02 from Workstation PC, Now Go to your PC and try to ping firewall from Command Prompt:

banner image

banner image

Now as the devices are configured with the management IP address. Take GUI of the firewalls with the management IP address and proceed with following steps. On the Workstation PC, take GUI of firewall PaloAlto01 and follow below snapshots:

banner image

As this is the error of local signed cert, so you can ignore that and proceed with the connection.

banner image

Here the username and password will be same as we used in CLI i.e.

Username: admin       Password: admin

banner image

There will be pop-up asking to reset the password to new one as you logged in with default password. Need not to worry and click on OK.

banner image

your GUI window for PaloAlto01

banner image

On the Workstation PC, take GUI of firewall PaloAlto02 and follow below snapshots:

banner image

Username: admin       Password: admin

banner image

your GUI window for PaloAlto02

banner image


Palo Alto Set Management IP Using CLI»
Amar Singh

Amar Singh is a senior security architect and a certified trainer. He is currently working with a reputed organization based out of India. His accomplishments include CCNA, CCNP Security, CEH, Vmware, Checkpoint and Palo Alto Certifications. He is holding more than 12 years of experience in Network security domain. In his career he has been ...

More... | Author`s Bog | Book a Meeting

Related Articles

#Explore latest news and articles

Palo Alto Static NAT: LAN-DMZ App Zone 2 Nov 2024

Palo Alto Static NAT: LAN-DMZ App Zone

Learn how to configure Palo Alto static NAT with step-by-step screenshots and in-depth explanation on a scenario. Read More!
12 Palo Alto Firewall Features 19 Mar 2025

12 Palo Alto Firewall Features

Introduction to Palo Alto Firewall Features and explore the key aspects and capabilities of Palo Alto Firewall.

Comments (0)

Amar Singh

Amar Singh

Network Senior Security Architect Instructor role
★★★★★ 4.94
Faithful User
Expert Vendor
Golden Classes
King Seller
Fantastic Support
Loyal Writer
+91 8383 96 16 46

Enquire Now

Captcha
Share to your friends

Share

Share this post with others

Contact learning advisor

Captcha image