Palo Alto Firewall - Platforms and Architecture

Time to Read

1 minute

Palo Alto Firewall – Platforms and Architecture

Control Plane and Dataplane Overview

Debug functions run on either the control plane or the Dataplane

Logging (to the hard drive) is controlled by the control plane

The control plane also referred as Management plane, is where configurations are defined and configured. The control plane considered to be the brain of the firewall and the Dataplane is the muscle of the firewall.

Configuration made within the control plane are pushed by a commit operation to the Dataplane.

The component of the control plane and the Dataplane vary for each platform, series of the firewall.

Control Plane - Dataplane front.png

Architecture front

Different items can leverage the single pass other items can leverage parallel processing

Signature match is done in parallel.
The stream passes and is scanned for “signatures” or patterns.
Security Processing requires computation to calculate keys for SSL, IPSEC, opening SSL and setting up sessions.
This is a simple CPU set of tasks.
The actual rules are processed here too and the logs are created. So report & Enforce.
Network processing does networking, like NAT and QoS.

Palo Alto Firewall models

PA-200 Model and Features

PA-200 front

PA-500 Model and Features

PA-500 front

PA-2000 Model and Features

PA-2000s front

PA-3020 Model and Features PA-3020 front

PA-3050 Model and Features

PA-3050 front

PA-5000 Models and Features

PA-5000 front

PA-7000 Models and Features

PA-7000 front

Palo Alto Virtual Firewalls

VM series firewalls front

Sanchit Agrawal

Blog Author

Advertisements

Free/Useful SSH ToolsOctober 7, 2023
SSH is a cryptographic network protocol used for secure access and file transfers. Several tools aid in its usage, offering various features. Key ones include OpenSSH for Unix-based systems, PuTTY and Bitvise SSH Client for Windows platforms, and MobaXterm as a comprehensive Windows terminal. Each tool caters to different user requirements and operating systems.
Different Types of Networking ToolsOctober 7, 2023
Network tools are applications designed for management, analysis, monitoring, and troubleshooting of computer networks. Utilized by IT professionals, tools like Nagios, Zabbix, and PRTG support network monitoring and performance optimization. Wireshark, Tcpdump, and Ethereal allow packet analysis while Nmap, Angry IP Scanner, and Advanced IP Scanner provide scanning and discovery tools. Others such as Cacti, SolarWinds, and MRTG monitor bandwidth. PuTTY, OpenSSH, and Cisco Packet Tracer aid in network management. Tools like Snort, Suricata, and Nessus ensure network security, alongside other troubleshooting, DNS, firewall, and remote desktop tools.
How To Configure the Apache Web Server on an UbuntuMarch 14, 2023
How to create and host apache website on linux/ubuntu
How to enable HTTP/2 in Apache LinuxMarch 13, 2023
How to enable HTTP2 for Ubuntu Apache2 website
How to generate SSL certificate in Linux (Ubuntu)March 12, 2023
How to Enable SSL website and Certificate on Apache2 (Ubuntu).
How to install Apache on UbuntuMay 31, 2022
How to install Apache2 application on Ubuntu Linux server
How To install Ubuntu Linux Operating System on EVE-NGMay 30, 2022
Download the latest ubuntu Desktop or Server Image from the Ubuntu website… Read more: How To install Ubuntu Linux Operating System on EVE-NG
How to Install Ubuntu OS on VMMay 29, 2022
Select try or install Ubuntu It will load the ubuntu files Select… Read more: How to Install Ubuntu OS on VM

Sanchit Gurukul