I have FINALLY SUCCEEDED in getting Palo Alto VM-Series Software Firewall 10.0.4 to work in Ubuntu Desktop 22.04.5 LTS KVM Host

Subject: I have FINALLY SUCCEEDED in getting Palo Alto VM-Series Software Firewall 10.0.4 to work in Ubuntu Desktop 22.04.5 LTS KVM Host

Author: Mr. Turritopsis Dohrnii Teo En Ming
Country: Singapore
Date: 2nd April 2025 Wednesday

I have FINALLY SUCCEEDED in getting Palo Alto VM-Series Software Firewall 10.0.4 to work in Ubuntu Desktop 22.04.5 LTS KVM Host.

Below are my FINAL notes.

cd /etc/netplan/
sudo nano 01-netcfg.yaml

My FINAL netplan configuration:

network:
  version: 2
  renderer: networkd
  ethernets:
    enp1s0:
      dhcp4: no
    enp2s0:
      dhcp4: no
    enp3s0:
      dhcp4: no
    enp4s0:
      dhcp4: no
  bridges:
# Management interface
    br0:
      interfaces: [enp1s0]
      dhcp4: yes
# WAN interface
    br1:
      interfaces: [enp2s0]
      dhcp4: yes
# LAN interface
    br2:
      interfaces: [enp3s0]
      dhcp4: no
      addresses: [192.168.1.254/24]
# Unused interface for the moment, maybe DMZ in the future
    br3:
      interfaces: [enp4s0]
      dhcp4: yes

sudo netplan apply
sudo systemctl restart NetworkManager

sudo brctl addif br0 enp1s0
sudo brctl addif br1 enp2s0
sudo brctl addif br2 enp3s0
sudo brctl addif br3 enp4s0

teo-en-ming@PA-VM:/etc/netplan$ sudo brctl show
bridge name    bridge id        STP enabled    interfaces
br0        8000.da16c5ba83c0    yes        enp1s0
br1        8000.2a1de38524c1    yes        enp2s0
br2        8000.2ac0bc028fe3    yes        eno1
br3        8000.4eb2b8fe7743    yes        enp4s0
virbr0        8000.525400f9e6d6    yes    

You should use virtio for all of your Linux bridges in Virtual Machine Manager (GUI). virtio has been verified to work.    

Interface Mappings
===================

Port 1 on the hardware appliance maps to the Management interface eth0
Port 2 on the hardware appliance maps to the WAN interface ethernet1/1
Port 3 on the hardware appliance maps to the LAN interface ethernet1/2
Port 4 on the hardware appliance maps to the DMZ interface ethernet1/3 (to be implemented in the future)

Congratulations to myself!

My next project: I am planning to download, install and configure Check Point CloudGuard Virtual Firewall in Ubuntu Linux KVM host!

Regards,

Mr. Turritopsis Dohrnii Teo En Ming
Singapore
2nd April 2025 Wednesday 12.25 AM



REFERENCES
============

[1] https://lists.ubuntu.com/archives/ubuntu-users/2025-April/314212.html

[2] https://marc.info/?l=ubuntu-users&m=174352466500801&w=2

[3] https://lore.kernel.org/netdev/w-vSvJ1CEeQo-3EplTRQeiIgtT7x20Pk89dGwGAfApgvgoPO6aKk2739taptvtxkLqkgLn84ICgfSmNmYgX827_wt9CJuqI5ery3YWh-AzE=@protonmail.com/T/#u

[4] https://marc.info/?l=linux-netdev&m=174352484100960&w=2


Comments

Post a Comment

Popular posts from this blog

How the Singapore Government cheated my family of a HDB flat (Draft 22 Aug 2023)

Subject: How the Singapore Government cheated my family of a HDB flat (Draft 22 Aug 2023) It is a Well-Known Fact that government(s) invented mental illness to punish and torture people (and their families) who criticise the government or say bad things about the government. The Singapore Government rewarded my mother with a mental illness (schizophrenia). By leveraging mind control technology, the Singapore Government is able to make my mother hear voices in her head and trick her into believing that her neighbors are scolding her and targeting her everyday. Yes, the Singapore Government resorted to using this trickery. My mother firmly believes that her neighbors are scolding her and targeting her everyday. So we sold off our 1st HDB flat at Bedok North Street 3 and purchased another HDB flat at Yishun without careful consideration, planning and advice. When we moved to the HDB flat at Yishun, my mother still firmly believes that her neighbors are scolding her and targeting her every...
Read more

[DRAFT 26 SEP 2022] HDB refuses to reduce monthly rental fees of my rental flat despite many appeals

Subject: [DRAFT 26 SEP 2022] HDB refuses to reduce monthly rental fees of my rental flat despite many appeals DRAFT 26 SEP 2022 FOR IMMEDIATE RELEASE My name is Mr. Turritopsis Dohrnii Teo En Ming. I am 44 years old. I am a Targeted Individual (TI) living in Singapore. A Targeted Individual is a person who is persecuted, targeted, marked and blacklisted by the government. After graduation from the National University of Singapore in Dec 2006, I started working in Defense Science and Technology Agency (DSTA) as an IT Engineer. But I offended Singapore Minister Mentor Lee Kuan Yew in the year 2007. When I was having a private conversation with my manager Mr. Loh Choon Fah in his office, I said: "When Lee Kuan Yew is gone, Singapore would be more democratic.". This is how I offended Singapore strongman Lee Kuan Yew. Within a few months, I started hearing threatening and menacing voices from the Singapore government. Hearing voices is also known as schizophrenia (mental illness)....
Read more