CN-Series System Requirements for On-Premises Kubernetes Deployments
Review the system requirements for deploying the CN-Series on on-prem.
Where Can I Use This?
What Do I Need?
CN-Series Firewall
deployment
CN-Series 10.1.x or above Container Images
Panorama
running PAN-OS 10.1.x or above version
Helm 3.6 or above version client
Review the following prerequisites for your on-premises deployments:
Ensure that the container images are accessible to all nodes in the Kubernetes
cluster.
Set up a persistent volume within the cluster for both the CN-MGMT pods. Since
CN-MGMT pods that actively manage CN-NGFW pods, are deployed as a StatefulSet,
both instances must have access to the persistent volume.
To get the SSH access for your Rancher cluster, you must ensure that the content of
the kubeconfig file is copied under the location
/.kube/config
, and
then only, you can run kubectl commands for your cluster.
Also, you should ensure that the Kubernetes command-line tool, kubectl is installed
on your system. For more information, see Install Tools.
For CN-Series with Rancher support, install Docker on Master node Ubuntu 18.0.4 LTS
VM with 8 vCPUs and 32G Memory with minimum 200G disk. For more information, see
Install Docker On Ubuntu 18.04.
For Ubuntu 18.0.4, Kernel on the machines should be updated to the latest Kernel
using the following command:
