Next-Generation Firewall
Cloud Management
Table of Contents
Expand All
|
Collapse All
Next-Generation Firewall Docs
-
-
-
-
-
-
-
- PAN-OS 12.1
- PAN-OS 11.2
- PAN-OS 11.1
- PAN-OS 11.0 (EoL)
- PAN-OS 10.2
- PAN-OS 10.1
- PAN-OS 10.0 (EoL)
- PAN-OS 9.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 8.1 (EoL)
-
- PAN-OS 12.1
- PAN-OS 11.2
- PAN-OS 11.1
- PAN-OS 10.2
- PAN-OS 10.1
Cloud Management
Review the prerequisites for onboarding NGFWs to Strata Cloud Manager.
Review the requirements to onboard a Strata Cloud Manager tenant and
firewalls to Strata Cloud Manager.
Note that some requirements, such as PAN-OS Version, Firewall Model,
Ports, and Services, apply to the firewall. While others, such as the Logging and
Authentication service requirements, apply to your Customer Support Portal (CSP)
account.
|
Prerequisite
|
Supported
|
Required?
|
|---|---|---|
|
PAN-OS Version
|
(minimum)PAN-OS 10.2.3
|
Yes
|
|
Firewall Model
Single vsys firewalls only
Multi-vsys firewalls are not supported
|
PA-220 and PA-220R
PA-400 Series
PA-450R
PA-800 Series
PA-1400 Series
PA-3200 Series
PA-3400 Series
PA-5200 Series
PA-5400 Series
PA-5450
PA-7000 Series
|
N/A
|
|
Ports
Ports are used for outbound communication from the firewall to
Strata Cloud Manager and CDL
|
443
444
3978
|
Yes
|
|
Services
Services are used for resolution of the Strata Cloud Manager
tenant, as well as software and content updates
|
DNS
NTP
|
Yes
|
|
Firewall Onboarding
|
AIOps for NGFW (Premium)
(Optional) Zero Touch Provisioning (ZTP)
|
Yes
ZTP onboarding is optional
|
|
Logging
|
Cortex Data Lake
|
Yes
|
|
Data Filtering
|
Enterprise data loss prevention (DLP)
|
No
|
| SaaS Application Management |
Next-Generation CASB
|
No
|