Network technologies and trends

Nov 26 2015   4:41AM GMT

Palo Alto Networks Firewall Interface Types –  Virtual Wire

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Tags:
Administrator
Decryption
Ethernet
Firewalls
HA
Interface
LAYER3
Loopback
NAT
Palo Alto Networks
Security policy
tunnel
VLAN

We all know Palo Alto Network Firewalls offers quite flexibility deployment options, one can also deploy Palo Alto Networks in Virtual Wire or V-Wire mode. This is the beauty of Palo Alto Networks Firewalls , the flexibility it offers cannot be matched by some of the leading firewall vendors. Though other vendors offers the same feature  better known as transparent firewalls.

Virtual Wire mode can be deployed by pairing a set of two physical interfaces into a single set and in V-Wire mode one does not needs to assign either an IP Address or a mac address.  Virtual Wire is also referred to as a “Bump in the Wire” of “Transparent In-Line”. By default certain Palo Alto Networks Firewalls comes with preconfigure Virtual Wire mode and Ethernet ports 1 and 2 are part of that default V-Wire.

Palo Alto V-Wire Mode

These kinds of deployment comes very handy, especially when one does not wants to do any kind of  switching or routing  and simply wants to plug and play with the Palo Alto Networks firewall.  The biggest value Palo Alto Networks offers in Virtual Wire mode is, it supports features like App-ID, decryption , Content-ID , User-ID and NAT by using all these features one can certainly inspect the traffic passing through Virtual Wire and can apply the security policy. In upcoming  post lets configure a Palo Alto Firewall in Virtual -Wire Mode and see how it works.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: