Configure the Panorama Plugin for Nutanix
After installing the plugin, complete the following procedure to establish a connection between Panorama and Prism Central.
- Log in to the Panorama web interface.
- Enable monitoring and set the monitoring interval.
- SelectEnable Monitoring.
- Set theMonitoring Intervalin seconds. The monitoring interval is how often Panorama retrieves updated networking information from Prism Central.
- Create a notify group.
- Select.PanoramaNutanixSetupNotify Groups
- Enter a descriptiveNamefor your notify group.
- Select the device groups in your Nutanix deployment.
- Add Prism Central information.
- Select.PanoramaNutanixSetupNutanix Prism Central
- Enter a descriptiveNamefor your Prism Central.
- Enter the IP address or FQDN for Prism Central.
- Enter your Prism Central username.
- Enter and confirm your Prism Central password.
- ClickValidateto confirm that you entered the Prism Central credentials correctly.If you return to the Nutanix Prism Central Info window after clicking OK, clicking the Validate button returns a credential validation error message. This is the expected behavior. Although Panorama displays dots in the password field, the field is empty; this causes the validation to fail despite Panorama being successfully connected to Prism Central.
- Configure the Monitoring Definition.
- Selectand clickPanoramaNutanixMonitoring DefinitionAdd.
- Enter a descriptiveNameand optionally a description to identify the Prism Central for which you use this definition.
- Select thePrism CentralandNotify Group.
- Commityour changes.
- Verify that you can view the VM information on Panorama, and define the match criteria for dynamic address groups.
- Selectand clickPanoramaObjectsAddress GroupsAdd.
- Enter a descriptiveNamefor your dynamic address groups.
- SelectDynamicfrom the Type drop-down.
- ClickAdd Match Criteria. You can select dynamic tags as the match criteria to populate the members of the group. Select theAndorOroperator and select the attributes that you would like to filter for or match against. and then clickOK.
- Commityour changes.
- Verify that addresses in your VMs are added to dynamic address groups.
- Select.PanoramaObjectsAddress Groups
- ClickMorein the Addresses column of a dynamic address group.Panorama displays a list of IP addresses added to that dynamic address group based on the match criteria you specified.
- Use dynamic address groups in policy.
- ClickAddand enter aNameand aDescriptionfor the policy.
- Add theSource Zoneto specify the zone from which the traffic originates.
- Add theDestination Zoneat which the traffic is terminating.
- For theDestination Address, select the Dynamic address group you just created.
- Specify the action—AlloworDeny—for the traffic, and optionally attach the default security profiles to the rule.
- Repeat Steps 1 through 6 to create another policy rule.
Recommended For You
Recommended videos not found.