Learn to configure the Shasta LAN with Prisma SD-WAN.
Where Can I Use This?
What Do I Need?
Strata Cloud Manager
Prisma SD-WAN license
To configure Shasta LAN:
On the CloudBlades page, select Configure on the Shasta LAN tile.
Install the Shasta LAN.
After the installation, configure and manage Shasta LAN on the Shasta Cloud
portal.
As a first-time user, you will need to register on Shasta Cloud.
After you register, you will receive an email invitation to log into Shasta
Cloud. Complete the registration process to access the Shasta Cloud
portal.
If you have access to Shasta Cloud, you can configure sites on
Shasta Cloud.
After saving the configuration, the Shasta LAN tile shows as enabled on the
CloudBlade page.
Onboard Using Zero Touch Provisioning
ZTP simplifies and automates the onboarding of new branch sites to the Prisma
SASE portal. To onboard branch sites:
Navigate to Branch Sites and select a site.
Select to Configure Shasta LAN.
Click Next.
Enter the DHCP information like Subnet,
Default Gateway, IP Range,
and DNS Servers. You can up to three DNS
servers.
To complete the Shasta LAN onboarding configuration, Select
Networks that should be pushed to the access points
associated with this site.
For a first site deployment, define the wireless network parameters such
as SSID name, authentication mechanisms, and isolation policy for
segmentation.
You can also configure additional VLANs for the data traffic, supporting
both switch and wireless users and devices.
Click Next and Save your changes, and you can see the DHCP and
network configured on the Shasta LAN.
Now, you can update and manage Shasta LAN ZTP network and Wireless network
settings by selecting the Manage button. You can also
Monitor Shasta LAN by using the link below the
Manage button.
You can monitor the LAN infrastructure at the site along with the clients
connected to the LAN infrastructure by clicking the Monitor link. This
takes you to the CloudBlade
Monitor
tab.
Onboard New Switches and Access Points
After enabling ZTP provisioning for Shasta LAN at a site, you can now
connect Shasta Switches and Access Points to your branch network. Connect your
switch uplink ports to the ION device’s LAN interface. After the device receives
a DHCP address, it will automatically connect to the Shasta Cloud portal, apply
the default switch profile (default profiles can be modified in the Shasta Cloud
portal), and be provisioned as part of a Venue (also known as a Prisma SD-WAN
site). Any additional switches and access points connected will automatically
attach to the Venue moving forward.
To monitor the status of switches and access points,
navigate to the CloudBladeShasta LANMonitor page. Here, you can view real-time connectivity, device health,
performance metrics, and event logs, ensuring optimal network operation and
troubleshooting capabilities.
General - The General tab displays the total number of connected access
points, switches, and clients to the site.
Switches - Switches shows the switches connected to the venue and their
status.
Access Points - Access Points shows the access points connected to the
venue and their status.
Clients - The page lists the clients connected to the site.
Block Lists - The Block lists show the list of clients that are banned or
quarantined from connecting to the network. This is useful when dealing with a
compromised device that you need to quarantine from the rest of the network to
prevent lateral threats from moving throughout your LAN and WAN.
To add a device to the list, click Add to specify the Mac
address and click Apply.
Notifications - The Notifications shows any incidents and alarms for the
switching and wireless infrastructure.
