Palo Alto Firewall PA-440 Unboxing | Startup | First Time Setup
Vložit
- čas přidán 1. 02. 2023
- I'm Keith Barker, a 2x CCIE (Cisco Certified Internetwork Expert). In this video I unbox the Palo Alto PA-440 and go over some basic setup to get you started.
I'm am your guy if you are:
👉 New to IT and don't know where to start
👉Currently in IT, and want to learn more advanced ideas
👉 Anyone who wants to learn about the basics of technology in general
I believe that anyone can improve their situation by gaining new skills, especially in information technology.
🆓 Free Packet Tracer Labs download: thekeithbarker.com
⏩ Enjoy, Like, and Subscribe. 😃
Free CZcams Playlists from Keith:
▶ Cisco CCNA 200-301 ogit.online/sloth
🔐 Cisco CCNA 200-301 Security ogit.online/200-301_Security
💻 Cisco CCNA 200-301 IPv4 Subnetting ogit.online/subnet
💬 Join our Discord server (free) ogit.online/Join_OGIT_on_Discord
🏪 Keith Barker Amazon Affiliate Store www.amazon.com/shop/keithbarker
🏫 Keith’s Content at CBT Nuggets ogit.online/Keith-CBT
So glad to see you showing PA some love again. Hope that means more PA content in the future!
Keith, I can't thank you enough. You helped me (and people all around the world) alot over the years. Thank you from the bottom of my heart.
woohoo, keith is back
glad to know you finally got one!
love you videos Keith! waiting for more!
Hey Keith, another great video! From my CCNA days to CCNP, Fortinet, and now Palo Alto, you carried my whole career!
Thank you Michael! I have a short Palo Alto playlist for CZcams that I am uploading this week.
@@KeithBarker looks like you're about to carry mines too.
I got mine 440 recently and plan to set it up later today.
I'm already looking forward to it and that's why I came across your video.
Thank you @saschakruger3576!
Thanks a bunch, I love what you have been doing for a long time, we learned a lots from you..
My pleasure!
Keith doing what he does best can't have enough of your trainings...
Thank you felix kasuti!
Great Video. I like PA-400 models. It has cool formfactor and pretty solid specs. Hope you will make a video with PA-CN series!
Nice video, One day id like to get one of these units too for the lab to play with !!
Hey Keith, Thank you for a great and applicable video.
Thank you!
Perfect timing I'm watching your pan series on CBT nuggets
Thanks for making this video!!
My pleasure!
Keith awaiting for Palo Alto more & deep classes
I will get there eventually.
gracias por el video , saludos de Lima Perú
Nice video again Keith :)
Thank you InfoSec Pat!
Excellent Video !!!
Thank you! Cheers!
Very cool and fantastic video
Thank you Koti D!
Hi Keith , Thanks for this. Could you please bring some content on global protect Palo Alto.
Keith! I saw you dropped a CWDP course on CBT. Stoked to see more of your WiFi courses!
I used your CCNA course to get my first networking cert and technician job 2 years ago. Fast forward to today I'm an engineer!!
That's awesome. I am doing the Palo right now. I got my CCNP though Jeremy Chara
Same here. Got my CCNA and I'm an engineer as well. I got my PCNSA through Keith's training on CBT Nuggets and now I'm training for my PCNSE.
@@davidsanders1593 that's great I am new to Palo.. Check point engineer for 12 years. Was the exam difficulted. So far the class is relativity straight forward.
@@jasonme3557 There were a few questions that stumped me on the PCNSA but overall it wasn't that bad. As long as you pay attention to Keith's training, you're good to go. Passed on the first attempt.
Wish we could actually buy these used without license issues. Looks like fun. Thanks for sharing.
Their products aren't really geared toward any buyers except for businesses. And even then, you're really best off when you've got a panorama license and are centrally managing your firewalls that you've set up in a repeated configuration model.
I'm waiting for the 445 with SFP, but I think they've made a mistake in the design. There are two SFP slots, but one of them is apparently only for the management port. One effectively only has one SFP port. This is frustrating when fiber makes for a wonderful electrical separation from a service provider's equipment to the campus equipment.
That's nice 🙂
Thank you @technicallordg6254!
I still bust some moves when your intro hits 🤖
Thanks
Thank you holgidolgi!
CCNA R&S, CCNP R&S, CCNA Security,CCNP Security, PCNSA, CCSA, F5 BIG IP LTM, VMware VCP, VSphere, ECH CEHv10 everything I studied from you.
I'll always owe on you....
Thank you @sreejithjinachandran7322!
pro-tip, sometimes putty gets weird and highlighting 'admin' and right clicking fixes that for the passwd input
Thank you @paulhaley499!
I've had a pa440 for a year already
Great video thanks! - with only 8 ports - can the PA-450 be placed at a campus (200 users) and which ports can be used for an HA deployment since there are no dedicated HA ports, thank you
Thank you for the question Rogue Dire.
A PA-450 should easily support 200 users.
For the HA interfaces, use any 2 of the gigabit interfaces, specify they are the type "HA" and you are good to go.
All the best to you!
Hi Keith not sure if you mentioned in any of the comment, but do you mind sharing how you ended up getting the Appliance?
Thank you Henrry Villeta! I bought the lab units through Corporate Armour. They were each priced under 1K US, and the service was great. Had to use a company email address.
nice video... what kind of marker you used for power supply ?
Thank you for the question a a. Just a silver sharpie.
Hi Keith, I have home lab but want to access that lab remotely. If you don't mind, could you please suggest me some options?
does the license come with it? or do I have to register device to get/activate license?
Keith can you do a video on DR for on prem to a nearby site being hot. I'm not sure how that concept works as far as streaming and failover. If you can shed light that would be awesome!
Thank you for the question Es J. I am not an expert on that, so I don't have any videos planned for that topic.
I guess it's more for server guys. I believe we just provide redundant fiber to the routers for disaster recovery and what ever routing protocol. Thanks!
May I ask where you purchased the device from? Was it new, opened box, used? I want to purchase one for learning, but not too familiar with the product line.
change of subject. I enjoy your videos and learn a lot. Wish you would do another/updated structured CCNA course. I just can't into Jeremy from CBTnuggets or Kevin Wallace.
Thank you Terry Williams! I bought 2 lab units, with licenses, through Corporate Armour.
Hey Keith, Big fan of you. Was wondering if you had a VR headset and if you've ever heard of vrchat
Thank you targeting! I use the consumer grade Oculus Quest 2, and have been in VR Chat more than a few times. One of my kids designs avatars and worlds there.
Hey Keith. I couldn't help but notice in the CLI that the sw version said 11.0.0 but when you went into the GUI it shows 10.1.3. Is that because the firewall was upgraded to version 11 prior to the GUI being shown in the video?
And with that being said, can you show us PanOS 11 in a future video?
Good eye! I filmed the video, including the box opening and initial setup first. Then I did the upgrade later in the day off camera.
After that, I decided to reshoot the initial config. So I did a factory reset, and that is why the configuration is on v 11, but the other portions of the video reflect 10.x.
All my videos going forwards at CBT Nuggets will be at version 11.x or better.
@@KeithBarker Great to know! I haven't upgraded my customers environments to version 11 yet. I'll be on the lookout for your new CBT Nuggets videos.
looks like an old 90's Punch amp.
Hi bro can you help me with this Captures of all Protocols I’m not getting enough info on this
How does the PA 440 compare to an NGF fro. Cisco like the Firepower 1010?
Thank you for the question Mark A. Ashford.
There are pros and cons for the NGFWs from Cisco, Fortinet, Palo Alto Networks, and CheckPoint.
I find that MOST features are similar. Some integrate better and easier than others. Some are twice as expensive as others.
It is a mixed bag.
What version of securecrt are you using? I would love to confirm what I am pasting before actually pasting. I either have an old version or I haven’t enabled a setting.
Thank you for the question Cameron C. I am using version 9.3.1
@@KeithBarker hmm, must be time for an upgrade. I’m running 6.6.3.
How do you get your SecureCRT to colour the different items like that?
Thank you for the question Tadija.
Using this www.vandyke.com/support/tips/colorconfig.html
with the Cisco color scheme
forums.vandyke.com/showthread.php?p=49910
I just got mine, plugged it in... only getting amber light on power... looks like maybe a DOA unit?? :/ tried both psu's.. new power cord, samething.. :(
Did you connect a console cable, and see if there are any messages at the console?
This kind of rugged box just begs for an integrated LTE/5G modem. It's a pain in a mobile truck to have a second modem to power and store and such.
They went away from their blue color?
What are you going to use it for Keith?
Thank you for the question Alexander Neumann. I am updating our PCNSA and PCNSE content at CBT Nuggets.
@@KeithBarker looking forward for the updated course.
Where did you get the lab subscriptions?
Thank you for the question Michael Moore. I purchased the hardware and the lab license from:
www.corporatearmor.com/product/palo-alto-networks-pa-440-next-gen-firewall
H/W:
PAN-PA-440-LAB
1 Yr License
PAN-PA-440-BND-LAB4
@@KeithBarker Legend. Thanks. Fan since like 2000.
Hey Keith im following all of your steps but cant ping the dns server :(
Thank you @user-qx5rr2xi3e.
If it is a Windows DNS server on your local network, it well may be a software firewall, running on the server itself, which is not allowing ping requests in. You can temporarily disable the FW on that server in your lab, and test to see if that is what it is.
If you can ping the local gateway, and the DNS server is on the internet, it is likely a routing and/or NAT/PAT issue at your gateway.
why you give internet on management interface
How do you guys even purchase a license for home lab use? I see the hardware on ebay, but cant find where to get the license. Thanks.
I used the company called corporate armor, they were great working with me to get the PA 440 and a one-year lab license.
@KeithBarker contacted them, and they were really nice. But I guess Palo Alto doesn't sell licenses to home users. Boooo
How much is the license cost for the home lab?
Thank you for the question @sarbjitsingh4341. The 440 with a lab license was around $800 through cooperate armor.
why is the management CPU at 91%? :D
The initial boot up and initialization take a bit of CPU.
CLI shows the software version as 11.0 whereas GUI shows it as 10.1.3😂
Thank you Senstart! Fantastic eye for detail!!! I began an upgrade, (to 11), then did a factory reset, did the CLI, and the the last part of the video is from before I did the update. Hats off to you!!!
Love the demo and instruction but 1Gbps interfaces... it's 2023 my home internet connection is faster than 1Gbps. Surely having a couple of 2.5Gbps would be a good idea? C'mon PaloAlto you can do better than this. :)
You can do aggregated port
What equipment do you have at home that can actually utilize 1gb?