Setting up the VPN
There are several ways of connecting devices in a secure way. Palo Alto Networks firewalls currently support the following protocols:
- Generic Routing Encapsulation (GRE) is a fairly old protocol that is not very secure but can be useful if legacy devices need to be connected to the firewall to provide rudimentary security to the encapsulated packets.
- Internet Protocol Security (IPSec) is the de facto tunneling protocol between remote sites and can be used for very strong encryption.
- Secure Socket Layer (SSL), which is really Transport Layer Security (TLS), is used to connect endpoints over a network-friendly protocol.
To set up GRE tunnels, you can set up a connection in Networks | GRE Tunnels. All you need to configure is the following:
- Name
- Source interface
- Source IP
- Destination IP
- Tunnel interface
- TTL (default
64) - Keepalive
Set up the same configurations on the remote end to get it going. Routing and...
