PaloAlto Networks PA-5400 Series Hardware Reference Manual
  1. Manuals
  2. Brands
  3. PaloAlto Networks Manuals
  4. Firewall
  5. PA-5400 Series
  6. Hardware reference manual

PaloAlto Networks PA-5400 Series Hardware Reference Manual

Next-gen firewall
Hide thumbs Also See for PA-5400 Series:
Table of Contents

Advertisement

Quick Links

PA-5400 Series Next-Gen Firewall
Hardware Reference
paloaltonetworks.com/documentation

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the PA-5400 Series and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for PaloAlto Networks PA-5400 Series

Summary of Contents for PaloAlto Networks PA-5400 Series

  • Page 1 PA-5400 Series Next-Gen Firewall Hardware Reference paloaltonetworks.com/documentation...
  • Page 2 2020-2021 Palo Alto Networks, Inc. Palo Alto Networks is a registered trademark of Palo © Alto Networks. A list of our trademarks can be found at www.paloaltonetworks.com/company/ trademarks.html. All other marks mentioned herein may be trademarks of their respective companies. Last Revised June 3, 2021 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE |...

  • Page 3: Table Of Contents

    Verify the PA-5400 Series Firewall NC Configuration..............57 Service the PA-5400 Series Firewall Hardware........59 Replace a PA-5400 Series Firewall AC or DC Power Supply............61 Interpret the PA-5400 Series Firewall Power Supply LEDs..........61 Replace a PA-5450 AC or DC Power Supply............... 61 Replace a PA-5400 Series Base Card (BC)..................63...
  • Page 4 Replace a PA-5450 Fan Assembly...................65 Replace a PA-5400 Series Firewall Front Slot Card.................68 Replace a PA-5400 Series Management Processor Card (MPC)........68 Replace a PA-5400 Series Networking Card (NC)............... 69 Replace a PA-5400 Series Data Processor Card (DPC)............72 PA-5400 Series Front Slot and Card States................73 PA-5400 Series Logical Card Slots..................

  • Page 5: Before You Begin

    Before You Begin Read the following topics before you install or service a Palo Alto Networks next-generation ® firewall or appliance. The following topics apply to all Palo Alto Networks firewalls and appliances except where noted. > Upgrade/Downgrade Considerations for Firewalls and Appliances >...
  • Page 6 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin 2021 Palo Alto Networks, Inc. ©...

  • Page 7: Upgrade/Downgrade Considerations For Firewalls And Appliances

    If the value is downgrade. If the value is less than 20, then contact less than 20, then contact support for assistance. support for assistance. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin 2021 Palo Alto Networks, Inc. ©...

  • Page 8: Tamper Proof Statement

    • The integrity of the warranty label on the firewall or appliance is not compromised. (PA-7000 Series firewalls only) PA-7000 Series firewalls are modular systems and therefore do not include a warranty label on the firewall. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin 2021 Palo Alto Networks, Inc. ©...

  • Page 9: Third-Party Component Support

    Third-Party Component Support Before you consider installing third-party hardware, read the Palo Alto Networks Third-Party Component Support statement. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin 2021 Palo Alto Networks, Inc. ©...

  • Page 10: Product Safety Warnings

    • Protective circuit complies with IEC test classifications B2, C1, C2, C3, and D1. • Normal discharge current (core to earth ground) is 2kA per signal pair. • Normal discharge current (core to core) is 100A. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin 2021 Palo Alto Networks, Inc. ©...
  • Page 11 (AC or DC) from the power inputs to fully de- energize the hardware. French Translation: (Tous les appareils Palo Alto Networks avec au moins deux sources d’alimentation) Débranchez tous les cordons PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin 2021 Palo Alto Networks, Inc. ©...
  • Page 12 French Translation: La source d’alimentation c.c. doit se trouver dans les mêmes locaux que ce pare-feu. • The DC battery return wiring on the firewall must be connected as an isolated DC (DC-I) return. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin 2021 Palo Alto Networks, Inc.
  • Page 13 • A suitably-rated DC mains disconnect device must be provided as part of the building installation. French Translation: Un interrupteur d'isolement suffisant doit être fourni pendant l'installation du bâtiment. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin 2021 Palo Alto Networks, Inc. ©...
  • Page 14 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Before You Begin...

  • Page 15: Pa-5400 Series Firewall Overview

    The PA-5400 Series firewalls (currently only the PA-5450) are high performance modular appliances designed for large enterprise environments, data centers, and internet gateway deployments. The PA-5400 Series can leverage either AC or DC power and utilizes Networking Cards (NCs) and Data Processor Cards (DPCs) to scale network interfaces and data processing power as needed.
  • Page 16 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Overview 2021 Palo Alto Networks, Inc. ©...

  • Page 17: Pa-5450 Front And Back Panel Descriptions

    PA-5400 Series Firewall Data Processor Card (DPC) Blank Panel Serves as a cover for empty slots in order to help the appliance maintain system air flow. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Overview 2021 Palo Alto Networks, Inc. ©...

  • Page 18: Pa-5450 Back Panel

    The following image shows the back panel of the PA-5450 firewall (with two AC power supplies installed) and the table describes each back panel component. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Overview 2021 Palo Alto Networks, Inc.
  • Page 19 For information on connecting power to the appliance, see Connect Power to a PA-5400 Series Firewall. To view system firmware versions, use the following CLI command: admin@PA-5400> show chassis firmware PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Overview 2021 Palo Alto Networks, Inc. ©...
  • Page 20 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Overview...

  • Page 21: Pa-5400 Series Firewall Module And Interface Card Information

    PA-5400 Series Firewall Module and Interface Card Information The PA-5400 Series firewalls are modular systems that require a Base Card (BC) and a Management Processor Card (MPC) to operate. The BC is an internal baseboard that provides connections to the front card slots, power supplies, and fan assemblies. The two types of front slot cards, Networking Cards (NC) and Data Processing Cards (DPC), are interfaced with the BC on the front of the appliance.
  • Page 22 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Module and Interface Card Information 2021 Palo Alto Networks, Inc. ©...

  • Page 23: Pa-5400 Series Firewall Base Card (Bc)

    PA-5400 Series Firewall Base Card (BC) The PA-5400 Series Base Card (BC) serves as the link between all static and modular components of the appliance. It functions as a control plane ethernet switch, a data plane traffic manager, and first packet processor subsystem.

  • Page 24: Pa-5400 Series Firewall Management Processor Card (Mpc)

    PA-5400 Series Firewall Management Processor Card (MPC) The PA-5400 Series firewall Management Processor Card (MPC) is a mandatory interface that connects to PA-5400 Series Firewall Base Card (BC). The MPC enables management, logging, and high availability functions via SFP+ ports and features two system drives and one logging drive.
  • Page 25 (HA) control and synchronization. Connect this port directly from the HA1-A port on the first firewall in an HA pair PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Module and Interface Card Information 2021 Palo Alto Networks, Inc.
  • Page 26 FAN (Fan Green All fans are operating normally. Assemblies) A fan has encountered a failure. The card hardware failed. (Alarm) PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Module and Interface Card Information 2021 Palo Alto Networks, Inc. ©...
  • Page 27 Enter the following command to enable the SVC LED on the card in a specific slot: admin@PA-5450> set system setting service-led enable slot s3 yes LED is off. LED is solid blue. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Module and Interface Card Information 2021 Palo Alto Networks, Inc. ©...

  • Page 28: Pa-5400 Series Firewall Networking Card (Nc)

    PA-5400 Series Firewall Networking Card (NC) Networking Cards (NCs) provide network connectivity for a PA-5400 Series firewall. To scale performance and capacity, you can install up to two NCs in a PA-5450 firewall. When viewing the NCs from the web interface, the NCs are organized by slot and you click the icon to the left of the slot number to show the NC ports.
  • Page 29 Enter the following command to view the status of the SVC LED on all cards that have this LED: PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Module and Interface Card Information 2021 Palo Alto Networks, Inc.
  • Page 30 The following table describes functions and states of the QSFP28 port LEDs. The LEDs are tri-color and the color indicates link and the current port speed. Interface Speed Green LED Blue LED Yellow LED 10Gbps PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Module and Interface Card Information 2021 Palo Alto Networks, Inc. ©...

  • Page 31: Identify Pa-5400 Series Nc Port Activity And Link Leds

    The following image shows how to identify the activity and link LEDs for the port types available on PA-5400 Series firewall NCs. The image shows the port orientation if the NC is in a horizontal position. For details on the functions and states of the LEDS, see Interpret the PA-5400 NC-A LEDs.

  • Page 32: Pa-5400 Series Firewall Data Processor Card (Dpc)

    PA-5400 Series Firewall Data Processor Card (DPC) The PA-5400 Series Data Processor Card (DPC) is a front slot card that improves the processing capacity of the firewall. You can install up to four or five DPCs depending on your scaling needs and slot configuration.
  • Page 33 Enter the following command to view the status of the SVC LED on all cards that have this LED: admin@PA-5450> show system service-led status Service LED Slot Description Status PA-5400-NC-A empty PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Module and Interface Card Information 2021 Palo Alto Networks, Inc. ©...
  • Page 34 Enter the following command to enable the SVC LED on the card in a specific slot: admin@PA-5450> set system setting service-led enable slot s3 yes LED is off. LED is solid blue. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Module and Interface Card Information...

  • Page 35: Pa-5400 Series Firewall Installation

    PA-5400 Series Firewall Installation The PA-5400 Series firewalls are modular systems that require you to install several components, such as network cards, during the installation process. Due to the weight of the firewalls, we recommend that you first install the firewall appliance into the rack and then install the front slot cards.
  • Page 36 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...

  • Page 37: Pa-5400 Series Firewall Equipment Rack Installation

    PA-5400 Series Firewall Equipment Rack Installation. • Elevated ambient operating temperature—If the PA-5400 Series firewall is installed in a closed or multi- unit rack assembly, the ambient operating temperature of the rack environment may be greater than the ambient room temperature. Verify that the ambient temperature of the rack assembly does not exceed...
  • Page 38 Similarly, align the slotted holes in the adjustable mounting bracket to the holes on the rear of the equipment frame. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc.
  • Page 39 Tighten the screws to their recommended torque value. The mounting brackets are designed for equipment frames that are up to 32” deep (81.3 cm). PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...
  • Page 40 Use the provided 6-32 x 5/16 flathead screws to secure the adjustable bracket to the fixed STEP 5 | bracket. A minimum of 6 screws are required for each side. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...
  • Page 41 Secure the PA-5450 to the equipment frame on both sides using 8 screws each (not provided). STEP 7 | The screws must be compatible with your equipment frame. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...
  • Page 42 PA-5450 appliance. If adjustment is needed, only loosen the screws on one side at a time. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc.
  • Page 43 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...

  • Page 44: Install The Mandatory Pa-5400 Series Firewall Front Slot Cards

    Install the Mandatory PA-5400 Series Firewall Front Slot Cards The PA-5400 Series firewalls require a minimum of three cards that you install in the front slots of the appliance. These cards are shipped separately from the firewall and include the following: The Management Processor Card (MPC) provides management connectivity to the appliance and HA connectivity;...

  • Page 45: Install A Pa-5400 Series Firewall Networking Card (Nc)

    Gently push the MPC into slot 1 until the card reaches the end of the slot. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc.

  • Page 46: Configure Session Distribution On A Pa-5400 Series Firewall

    The image below shows a Management Processor Card (MPC); however, the procedure to install the DPC is the same. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...
  • Page 47 Ensure that the bottom “teeth” of the blank panel fit into the notches on the bottom of the slot. Rotate the blank panel upwards until it snaps at the top of the slot. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...

  • Page 48: Set Up A Connection To The Firewall

    Do you want to exit ZTP mode and configure your firewall in standard mode (yes/no)[no]? Enter yes. The system will then ask you to confirm. Enter yes again to boot in standard mode. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...
  • Page 49 You will have to enter the serial number (12-digit number identified as S/N) and claim key (8- digit number). These numbers are stickers attached to the back of the device. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc.

  • Page 50: Connect Power To A Pa-5400 Series Firewall

    Determine PA-5400 Series Firewall Power Configuration Requirements At least one active AC or DC power supply is required to operate a PA-5400 Series firewall. Factors that can change your power requirements are the number of Networking Cards (NCs) and Data Processor Cards (DPCs) used and your power redundancy requirement.
  • Page 51 STEP 4 | Remove the four nuts from the ground studs located on the back of the appliance on the upper left side. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...
  • Page 52 1. Prepare the DC power cable by crimping the bare wire ends of the cables using lugs (not included) designed for your DC power source. Each cable dongle has one red wire and one black wire. Connect PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc.
  • Page 53 (standard mode or Zero Touch Set Up a Connection to the Firewall. Provisioning mode) as specified in PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...

  • Page 54: View Pa-5400 Series Firewall Power Statistics

    View PA-5400 Series Firewall Power Statistics Use the following information to learn how to view active power statistics on a PA-5400 Series firewall to help you ensure power redundancy and to plan for growth. You can view the amount of power that each power supply is producing as well as the power rating for each hardware component.
  • Page 55 (MPC, DPC, and NCs) use 1565 watts. If you subtract 1565 from 6600, there are 5035 watts of power remaining. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...

  • Page 56: Connect Cables To A Pa-5400 Series Firewall

    HA Links and Backup Links). The following image shows the PA-5450 firewall cable connections. To install cable guides, see PA-5400 Series Firewall Equipment Rack Installation. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation 2021 Palo Alto Networks, Inc. ©...

  • Page 57: Verify The Pa-5400 Series Firewall Nc Configuration

    Configuration When you first set up a PA-5400 Series firewall, both NC slots are ready to use. If you are working with a firewall that is already deployed, you should check slot status before adding a new NC to ensure that the NC slot is ready.
  • Page 58 For example, to enable NCs installed in slot 2 of both appliances, run the following command: admin@PA-5450> request chassis power-on slot s2 target ha-pair For information on installing NCs, see Install a PA-5400 Series Firewall Networking Card (NC). PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Installation...

  • Page 59: Service The Pa-5400 Series Firewall Hardware

    Service the PA-5400 Series Firewall Hardware The following topics describes how to replace field-serviceable components on a PA-5400 Series firewall. For an overview of the hardware components, see PA-5400 Series Firewall Overview. > Replace a PA-5400 Series Firewall AC or DC Power Supply >...
  • Page 60 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc. ©...

  • Page 61: Replace A Pa-5400 Series Firewall Ac Or Dc Power Supply

    Replace a PA-5400 Series Firewall AC or DC Power Supply The following topics describe how to interpret the power supply LEDs and how to replace a PA-5400 Series firewall power supply. • Interpret the PA-5400 Series Firewall Power Supply LEDs •...
  • Page 62 It is best to route and secure the cable first and then plug the cable into the power supply. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc.

  • Page 63: Replace A Pa-5400 Series Base Card (Bc)

    Replace a PA-5400 Series Base Card (BC) The PA-5400 Series Base Card (BC) is not hot-swappable. In the case of a failure, you must power off the appliance and disconnect all power sources before removing the BC. • Replace a PA-5450 Base Card (BC)
  • Page 64 Support the BC with one hand while pulling it out from the appliance. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc. ©...

  • Page 65: Replace A Pa-5400 Series Firewall Fan Assembly

    Replace a PA-5400 Series Firewall Fan Assembly The following topics describe how to replace a PA-5400 Series firewall fan tray. • Replace a PA-5450 Fan Assembly Replace a PA-5450 Fan Assembly The PA-5450 has four dual-rotor, single fan assemblies on its rear side. Each single fan assembly can be individually removed and replaced.
  • Page 66 While still gripping the fan assembly handle, gently pull the fan assembly out of its slot. STEP 5 | PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc. ©...
  • Page 67 To view the status of each fan on a fan tray, run the following command: admin@PA-5450> show system environmentals fans PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc. ©...

  • Page 68: Replace A Pa-5400 Series Firewall Front Slot Card

    Replace a PA-5400 Series Firewall Front Slot Card The PA-5400 Series firewalls require one Management Processor Card, at least one Networking Card (NC), and at least one Data Processor Card (DPC). The procedures to replace all of the front slot cards in a PA-5400 Series firewall are identical.

  • Page 69: Replace A Pa-5400 Series Networking Card (Nc)

    NC. • Replace a PA-5450 Networking Card (NC) • PA-5400 Series Firewall Networking Card (NC) Troubleshooting Commands PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc. ©...
  • Page 70 Gently push the replacement NC into slot 1 or 2 until the card reaches the end of the slot. Push on both ejector handles until they lock the card into place. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc.
  • Page 71 This allows the firewall to start HA monitoring on each NC at the same time. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc.

  • Page 72: Replace A Pa-5400 Series Data Processor Card (Dpc)

    STEP 3 | The below image shows a Management Processor Card (MPC); however, the procedure to install the DPC is the same. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc.

  • Page 73: Pa-5400 Series Front Slot And Card States

    PA-5400 Series Front Slot and Card States You can view the slot and card status information on a PA-5400 Series firewall using the web interface or the command line interface (CLI). From the web interface, select Network > Interfaces to view the status of each slot.

  • Page 74: Pa-5400 Series Logical Card Slots

    Unsupported The card is not a supported type for this slot. PA-5400 Series Logical Card Slots The PA-5400 Series firewall requires the use of logical card slots in order to direct processing power from the Data Processing Card (PA-5400 DPC-A) to the Networking Card (PA-5400 NC-A).
  • Page 75 The third column of the table gives examples of critical system logs that are received in response to certain outcomes. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc.
  • Page 76 2. The firewall then verifies if the DPC is still in the Up or Disabled state. 3. Lastly, the firewall powers on the NC. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc.

  • Page 77: Replace A Pa-5450 Front Slot Card In A High Availability (Ha) Configuration

    If a slot fails in a running HA pair, it will take the device that sees the failure into a Non- • Functional or Tentative state. To bring the two devices back up: PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc. ©...
  • Page 78 3. Once the slots move into a Disable state, issue the following command and the slots will allow traffic to start flowing to the slot: request chassis enable slot X target ha-pair PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc.

  • Page 79: Install An Mpc Logging Drive

    Once the logging drive is fully seated, tighten the retainer screw to 4 in-lbs. Exceeding a torque of 4.5 in-lbs will damage the equipment. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc.

  • Page 80: Replace An Mpc System Drive

    MPC. STEP 8 | Fasten the retention screw back into place at a torque of 4 in-lbs. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc. ©...
  • Page 81 STEP 10 | Slide the MPC back into slot 7. See Install a PA-5400 Series Firewall Management Processor Card (MPC) for more information. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware 2021 Palo Alto Networks, Inc. ©...
  • Page 82 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | Service the PA-5400 Series Firewall Hardware...

  • Page 83: Pa-5400 Series Firewall Specifications

    PA-5400 Series Firewall Specifications The following topics provide appliance and component specifications for the PA-5400 Series firewalls. View the datasheet for information on features, performance, and capacity numbers. > PA-5400 Series Firewall Physical Specifications > PA-5400 Series Firewall Electrical Specifications...
  • Page 84 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Specifications 2021 Palo Alto Networks, Inc. ©...

  • Page 85: Pa-5400 Series Firewall Physical Specifications

    PA-5450 firewall—5U Rack mount size Power supply configurations PA-5450 firewall—Four AC or DC power supplies. The AC and DC power supplies are hot-swappable. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Specifications 2021 Palo Alto Networks, Inc. ©...

  • Page 86: Pa-5400 Series Firewall Electrical Specifications

    PA-5400 Series Firewall Electrical Specifications Use the following topics to learn about the PA-5400 Series firewall electric specifications and the types of power cords you can use. • PA-5400 Series Firewall Component Electrical Specifications • PA-5400 Series Firewall Power Cord Types...
  • Page 87 Power Cord, North America, 15A, 125V, C19 to NEMA 5-15P, 10ft PAN-PWR-C19-JP-120V Power Cord, Japan, 15A, 125V, JISC8303 to C19, 10ft, PSE Certified PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Specifications 2021 Palo Alto Networks, Inc. ©...

  • Page 88: Pa-5400 Series Firewall Environmental Specifications

    Value Operating temperature range 0° to 40°C (32°F to 104°F) Storage temperature range -20° to 70°C (-4°F to 158°F) Humidity 5% to 90% non-condensing Appliance airflow PA-5450—Front to back PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Specifications...

  • Page 89: Pa-5400 Series Firewall Hardware Compliance Statements

    Our products meet standards for product safety and electromagnetic compatibility when used for their intended purpose. To view compliance statements for the PA-5400 Series firewalls, see PA-5400 Series Firewall Compliance Statements.
  • Page 90 PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Hardware Compliance Statements 2021 Palo Alto Networks, Inc. ©...

  • Page 91: Pa-5400 Series Firewall Compliance Statements

    • NEBS Requirements The following lists the Network Equipment Building System (NEBS) requirements for PA-5400 Series firewalls. • The firewall is intended to be installed in a Network Telecommunication Facility (Central Office) as part of a Common Bonding Network (CBN) or Isolated Bonding Network (IBN).
  • Page 92 • Technischer Überwachungsverein (TUV) Risk of explosion if battery is replaced by an incorrect type. Dispose of used battery according to local regulations. PA-5400 SERIES NEXT-GEN FIREWALL HARDWARE REFERENCE | PA-5400 Series Firewall Hardware Compliance Statements...

This manual is also suitable for:

Pa-5450

Table of Contents