>
    Strata Copilot
    Strata Cloud Manager
    Focus
    Download PDF
    Focus
    1. Home
    2. Next-Generation Firewall
    3. LLDP
    4. Strata Cloud Manager
    Download PDF
    Next-Generation Firewall

    Strata Cloud Manager

    Table of Contents

    Strata Cloud Manager

    Configure Link Layer Discovery Protocol (LLDP) for Strata Cloud Manager.
    You can configure Link Layer Discovery Protocol (LLDP) for Strata Cloud Manager for an Ethernet interface or an Aggregate Ethernet Group at Layer 2 or Layer 3.
    1. Enable LLDP on Strata Cloud Manager.
      1. Select ConfigurationNGFW and Prisma Access.
      2. Select DeviceDevice SetupManagement
      3. In the LLDP section, select Customize.
      4. Enable LLDP.
    2. (Optional) Change LLDP global settings.
      • For Transmit Interval (sec), specify the interval (in seconds) at which LLDP data units (LLDPDUs) are transmitted. Range is 1 to 3,600; default is 30.
      • For Transmit Delay (sec), specify the delay time (in seconds) between LLDP transmission sent after a change is made in a TLV element. The delay helps to prevent flooding the segment with LLDPDUs if many network changes spike the number of LLDP changes, or if the interface flaps. The Transmit Delay must be less than the Transmit Interval. Range is 1 to 600; default is 2.
      • For Hold Time Multiple, specify a value that is multiplied by the Transmit Interval to determine the total TTL Hold Time. Range is 1 to 100; default is 4. The maximum TTL Hold Time is 65535 seconds, regardless of the multiplier value.
      • For Notification Interval, specify the interval (in seconds) at which LLDP Syslog Messages and SNMP Traps are transmitted when MIB changes occur. Range is 1 to 3,600; default is 5.
    3. Save the global settings.
    4. To enable LLDP for an Ethernet interface:
      1. Select Device SettingsInterfacesEthernet and Add Interface. Select Interface.
      2. Enter the Interface Name.
      3. Select the Default Interface Assignment.
      4. Select the Interface Type as Layer2.
      5. Assign the interface to a Zone.
      6. Select Advanced SettingsLLDP and Enable LLDP.
      7. For LLDP Profile, Create New profile. Selecting None enables LLDP with basic functionality: the firewall sends the three mandatory TLVs and enables Transmit and Receive mode.
      8. Proceed to create an LLDP profile.
    5. To enable LLDP for an Aggregate Ethernet Group:
      1. Select Device SettingsInterfacesEthernet and Add Interface. Select Aggregate Group and configure the aggregate group.
    6. Create an LLDP profile.
      1. Enter a Name for the LLDP profile.
      2. For Mode, select Transmit and Receive (default), Transmit Only, or Receive Only.
      3. Select SNMP Syslog Notification to enable SNMP notifications and syslog messages.
      4. Select the optional TLVs you want transmitted:
        • Port Description
        • System Name
        • System Description
        • System Capabilities
      5. (Optional) Select Management Address to Add one or more management addresses and enter a Name.
      6. Select the Interface from which to obtain the management address. At least one management address is required if Management Address TLV is enabled. If no management IP address is configured, the system uses the MAC address of the transmitting interface as the management address TLV.
      7. Select IPv4 or IPv6 and select an IP address from the list (which lists the addresses configured on the selected interface), or enter the address.
      8. Add the Management Address to the LLDP profile.
        Up to four management addresses are allowed. If you specify more than one Management Address, they will be sent in the order they are specified, starting at the top of the list. To change the order of the addresses, select an address and use the up arrow or down arrow.
      9. Add the LLDP profile to the interface.
    7. Save the configuration.

    © 2025 Palo Alto Networks, Inc. All rights reserved.