Add PAN-OS as a Prisma SD-WAN Data Center
Learn how to add a PAN-OS as a Prisma SD-WAN data center.
| Where Can I Use This? | What Do I Need? |
|---|
|
|
- Advanced SD-WAN license for NGFW
|
Integrating Palo Alto Networks Next-Generation Firewalls (NGFW) with Prisma
SD-WAN data centers and ION devices at branch locations unifies advanced security and
SD-WAN capabilities into a single, comprehensive data center platform. This approach
eliminates the need for separate SD-WAN and security appliances, simplifying both
network and security architecture in the data center. The NGFW and ION integration
streamlines operations, reduces complexity, and lowers operational overhead.
Supported Platforms
PAN-OS as a Prisma SD-WAN Data Center is supported on the following devices
and software versions:
- NGFW 5440
- All ION devices used in Branch Sites
- NGFW with PAN-OS 12.1.2 or later versions
- ION devices on 6.5.2
Unsupported Features
- Mixed Device Support: NGFW data center devices can be deployed
as standalone units or in HA pairs within a Prisma SD-WAN data center. However,
they cannot be mixed with ION devices in the same data center. For example, DC1
must contain only ION device; DC2 must contain only NGFW devices.
- WAN Interface Restrictions: NGFW WAN interfaces must use static
IP addresses. Port channels and sub-interfaces are not supported.
- DHCP interfaces are not supported for circuit activation.
- Feature Limitations:
- Packet Duplication and Forward Error Correction (FEC)
- Multicast
- IPv6
- RMA Wizard
