manualshive.com logo in svg

PaloAlto Networks ION 7000, Hardware Reference Manual

The PaloAlto Networks ION 7000 Hardware Reference Manual is available for free download on our website. This comprehensive manual provides detailed information on the product's hardware components and specifications. Visit manualshive.com to download your copy today and get the most out of your PaloAlto Networks ION 7000.

Share
Download
background image

Install the ION 7000

connected to a copper 1G ethernet port. This port should have access to the outbound internet

access to the Prisma SD-WAN controller service on port 443 (HTTPS).
Aer this port is connected and the ION 7000 powered on, the ION 7000 automacally connects

and registers with the controller. Aer registraon, the ION 7000 is available to claim and

configure in the Prisma SD-WAN console.

ION 7000 Peering Ports

The Prisma SD-WAN ION 7000 uses the peering ports to communicate with WAN edge or core

or WAN distribuon routers using BGP. The routers may be connected using one physical port per

router, or mulple routers can share a single port by using a shared Layer 2 VLAN.
The below figure shows the peering port topologies of an ION 7000.

Depending on the number, type and choice of routers and Layer 2 or Layer 3 configuraons, the

number of peering ports you require may vary. However, any non-controller port may be used for

a peering port. These ports are setup and idenfied at configuraon me.
To pre-cable the peering ports before configuraon:

STEP 1 |

Plan the number and the type of ION 7000 ports needed for peering configuraon.

STEP 2 |

Physically plug in the ports from the ION 7000 devices to the appropriate routers or

switches.

STEP 3 |

Record the ION port numbers and connecng router or switch port informaon for future

reference.

ION 7000 Internet Ports

The Prisma SD-WAN ION 7000 uses the internet ports to receive inbound VPN connecons from

the internet. Typically, ION 7000 devices use one internet port per data center, and this port must

be able to receive traffic from the internet.
This internet port must allow inbound UDP 4500 to the ION 7000 from remote ION devices. If a

firewall or NAT is used outside the ION 7000 on this port, UDP 4500 needs to be port-forwarded

or passed-through from the firewall or NAT device.
To pre-cable the internet ports before configuraon:

STEP 1 |

Plan the number and the type of ION 7000 ports you need for VPN configuraon.

ION 7000 Hardware Reference

26

©

2021 Palo Alto Networks, Inc.

Summary of Contents for ION 7000

Page 1: ...ION 7000 Hardware Reference docs paloaltonetworks com...

Page 2: ...ocs paloaltonetworks com search html Have feedback or ques ons for us Leave a comment on any page in the portal or write to us at documenta on paloaltonetworks com Copyright Palo Alto Networks Inc www...

Page 3: ...Installa on Kit Components 19 Power on the ION 7000 20 Shut Down the ION 7000 20 Reboot the ION 7000 20 Install the ION 7000 21 Rack Mount the ION 7000 22 Install the Slide Rail into the Rack 23 Rack...

Page 4: ...Table of Contents ION 7000 Hardware Reference 4 2021 Palo Alto Networks Inc...

Page 5: ...ou install or service a Palo Alto Networks next genera on rewall or appliance The following topics apply to all Palo Alto Networks rewalls and appliances except where noted Tamper Proof Statement Thir...

Page 6: ...uct The tracking number provided to you electronically when ordering the product matches the tracking number that is physically labeled on the box or crate The integrity of the tamper proof tape used...

Page 7: ...egin Third Party Component Support Before you consider installing third party hardware read the Palo Alto Networks Third Party Component Support statement ION 7000 Hardware Reference 7 2021 Palo Alto...

Page 8: ...est raccord e la terre Use grounded and shielded Ethernet cables to ensure agency compliance with electromagne c compliance EMC regula ons French Transla on Des c bles Ethernet blind s reli s la terr...

Page 9: ...C or DC from the power inputs to fully de energize the hardware French Transla on Tous les appareils Palo Alto Networks avec au moins deux sources d alimenta on D branchez tous les cordons d alimenta...

Page 10: ...Before You Begin ION 7000 Hardware Reference 10 2021 Palo Alto Networks Inc...

Page 11: ...ma SD WAN Instant On Networks ION 7000 and then plan your deployment ION 7000 ION 7000 Ports ION 7000 Front Panel with LEDs ION 7000 Speci ca ons ION Device Compliance Statement ION 7000 Installa on K...

Page 12: ...ploy the ION 7000 in an o path model enabling elas c non disrup ve scale out and high availability HA The ION 7000 Establishes connec vity with the data center network and exchanges rou ng informa on...

Page 13: ...erved for future use Controller Ports This port is used by the ION device to communicate with the Prisma SD WAN controller Internet Peering Ports These ports on the ION 7000 are used as internet ports...

Page 14: ...00 LEDs indicate the following status Icons Descrip on Displays power status Blue light Powered on No light Powered o Displays controller connec vity status Blue light Connected No light Not Connected...

Page 15: ...roughput Up to 5Gbps Power and Mechanical Type Wa s 1 1 redundant PSU 650W Power Input AC 100 240 V 50 60 Hz Fan Cooling 4 x swappable cooling fans direc on of air ow is from front to rear Cer ca ons...

Page 16: ...ty to two separate network devices that are currently par cipa ng in any dynamic rou ng protocol BGP OSPF EIGRP with each other Internet connec vity This connec vity is used to reach the Prisma SD WAN...

Page 17: ...a ng to electrical equipment designed for use within certain voltage limits Federal Communica ons Commission FCC statement for a Class A digital device or peripheral This equipment has been tested and...

Page 18: ...um rique de la classe A est conforme la norme NMB 003 du Canada Korean Communica ons Commission KCC Class A Statement This equipment is an electromagne c compa ble device for business purposes Class A...

Page 19: ...in with quick a ach square hole adapters 4x Rail slides with accompanying screws 2x 19 inch slide lock ears with accompanying screws 2x Red Cat6 crossover rollover ethernet cable 1x Grey Cat6 straigh...

Page 20: ...following ways Shut down using the Device Toolkit commands Run the device toolkit command debug shutdown to shut down the device Ensure the device is physically accessible to turn it back on before ex...

Page 21: ...isma SD WAN ION 7000 in a virtual in path or HA environment Rack Mount the ION 7000 Install the Slide Rail into the Rack Rack Mount the Slide Rails Install the ION 7000 in Virtual In Path Con gura on...

Page 22: ...from detaching from the rack a er they are fully installed The following gure illustrates the ION 7000 19 inch slide lock ears Rail slide to chassis moun ng brackets The ION 7000 uses the chassis moun...

Page 23: ...evice is installed securely in the rack If the rack has threaded round holes 1 Unscrew and detach the square rail snap ends from both ends of each rail 2 Using screws that t the threads of the rack no...

Page 24: ...ck mount enclosure STEP 1 Orient the front bracket of both rails in the same direc on STEP 2 Mount the rails securely and then insert the ION 7000 into the front of the sliding rails The following gur...

Page 25: ...ION 7000 or the legacy rou ng network The following gure illustrates the virtual in path deployment architecture of an ION 7000 data center To set up the ION 7000 virtual in path deployment con gure t...

Page 26: ...r port may be used for a peering port These ports are setup and iden ed at con gura on me To pre cable the peering ports before con gura on STEP 1 Plan the number and the type of ION 7000 ports needed...

Page 27: ...sically plug in the ports from the ION 7000 devices to the appropriate devices STEP 3 Record the ION port numbers and connec ng device port informa on for future reference ION 7000 Hardware Reference...

Page 28: ...ontally scalable high availability HA solu on between branch sites and data center clusters STEP 1 Add a second ION 7000 to the data center that requires high availability HA STEP 2 Mimic the exis ng...

Page 29: ...is con gured ensure that the NAT IP address or the NAT port is unique for each ION device There is no addi onal con gura on required on the second ION device except for IP addresses Both the ION 7000...

Page 30: ...Install the ION 7000 The following image illustrates the se ng up BGP for ION 7000 HA ION 7000 Hardware Reference 30 2021 Palo Alto Networks Inc...

Reviews:

No comments

Related manuals for ION 7000

3Com 3C16792 - OfficeConnect Dual Speed Switch 16 Datasheet preview
3C16792 - OfficeConnect Dual Speed Switch 16
Brand: 3Com Pages: 2
3Com 3C16772 - OfficeConnect Web Site Filter Datasheet preview
3C16772 - OfficeConnect Web Site Filter
Brand: 3Com Pages: 4
Swisscom Internet Backup Manual preview
Internet Backup
Brand: Swisscom Pages: 2
Asus AAEON FWS-2272 User Manual preview
AAEON FWS-2272
Brand: Asus Pages: 93
Huawei E8000E-X16 Manual preview
E8000E-X16
Brand: Huawei Pages: 182
Fortinet FortiGate 60M Installation Manual preview
FortiGate 60M
Brand: Fortinet Pages: 64
Draytek Vigor2952 Series Quick Start Manual preview
Vigor2952 Series
Brand: Draytek Pages: 15
Draytek GXP-1100 Technical Specifications preview
GXP-1100
Brand: Draytek Pages: 7
Forcepoint V10000 G3 Quick Start Manual preview
V10000 G3
Brand: Forcepoint Pages: 2
Intel McAfee Data Loss Prevention Prevent Quick Start Manual preview
McAfee Data Loss Prevention Prevent
Brand: Intel Pages: 8
Cyphre BT1 User Manual preview
BT1
Brand: Cyphre Pages: 219

Brands by name

Popular brands

Load more brands