PaloAlto Networks PA-5400 Series Hardware Reference Manual page 26

Next-gen firewall

Hide thumbs Also See for PA-5400 Series:

Hardware reference manual (94 pages)

Quick start manual (2 pages)

Quick start manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

page of 128

/ 128
Contents
Table of Contents
Bookmarks

Table of Contents

PA-5400 Series Firewall Module and Interface Card Information

Item

Component

USB Port

RJ-45 Console Port and

Micro USB Console Port

HSCI-A and HSCI-B

(High Speed Chassis

Interconnect) Ports

PA-5400 Series Next-Gen Firewall Hardware Reference

Description

information about installing a logging drive, see

MPC Logging

Drive.

One USB port that accepts a USB flash drive that contains

a bootstrap bundle (PAN-OS configuration) that enables

you to bootstrap the firewall. Bootstrapping enables you

to provision the firewall with a specific configuration,

license it, and make it operational on the network.

RJ-45 Console Port

Use the console port to connect a management computer

to the firewall using a 9-pin serial-to-RJ-45 cable and

terminal emulation software.

Micro USB Console Port

Use the console port to connect a management computer

to the firewall using a standard Type-A USB-to-micro USB

cable and terminal emulation software.

The console connection provides access to firewall boot

messages, the Maintenance Recovery Tool (MRT), and the

command line interface (CLI).

If your management computer does not have

a serial port, use a USB-to-serial converter.

Quad-SFP+ (QSFP+/QSFP28) interfaces used to connect

two PA-5400 Series firewalls for a high availability (HA)

configuration. Each port offers 80GE (two 40Gbps links)

or 200GE (two 100Gbps links) connectivity and is used

for HA2 data link in an active/passive configuration.

When in active/active mode, the port is also used for

HA3 packet forwarding for asymmetrically routed

sessions that require Layer 7 inspection for App-ID

Content#ID

™

In a typical installation, HSCI-A on the first firewall

connects directly to HSCI-A on the second firewall and

HSCI-B on the first firewall connects to HSCI-B on the

second firewall. The purpose of HSCI-B is to increase the

bandwidth for HA2/HA3 processing. This provides full

80-200Gbps transfer rates. In software, both ports (HSCI-

A and HSCI-B) are treated as one HA interface.

The HSCI ports are not routable and must be connected

directly to each other, not through a switch.

You can configure HA2 (data link) on the HSCI ports or on

NC data ports. When configuring on dataplane ports, you

Install an

and

™

2022 Palo Alto Networks, Inc.

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

Pa-5410 Pa-5420 Pa-5430 Pa-5440

PaloAlto Networks PA-5400 Series Hardware Reference Manual page 26

Hide quick links:

Related Manuals for PaloAlto Networks PA-5400 Series

Related Products for PaloAlto Networks PA-5400 Series

This manual is also suitable for:

Table of Contents