Redistribute Device Quarantine Information from Panorama

If you manage your next-generation firewalls using a Panorama appliance, you can create a quarantine list for all firewalls in
Panorama
Device Quarantine
and distribute that information to your managed firewalls. You redistribute device quarantine information the same way as you redistribute User-ID information. Complete the following steps to redistribute quarantine information from Panorama.
  1. Enable User-ID on the agent server if you have not done so already.
    • If the redistribution agent server uses the management interface, select
      Device
      Setup
      Interfaces
      Management
      and select
      User-ID
      .
      quarantine-user-id-mgmt-interface.png
    • If the redistribution agent uses an interface on the dataplane (for example, an Ethernet or VLAN interface), select
      Network
      Interface Mgmt
      , select an existing management profile or
      Add
      a new one, and select
      User-ID
      .
      quarantine-user-id-interface-management-profile.png
  2. To create a data redistribution agent, select
    Panorama
    Data Redistribution
    and
    Add
    the agent.
    The following example shows a data redistribution agent where Panorama distributes the
    Quarantine List
    information to the firewall with an IP address of 10.1.1.1 using port 5007.
    quarantine-add-data-redistribution-agent.png

Recommended For You