<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Palo Alto Networks: Hướng dẫn cấu hình routing ứng dụng đi theo đường internet chỉ định &#8211; Thegioifirewall</title>
	<atom:link href="https://thegioifirewall.com/tag/palo-alto-networks-huong-dan-cau-hinh-routing-ung-dung-di-theo-duong-internet-chi-dinh/feed/" rel="self" type="application/rss+xml" />
	<link>https://thegioifirewall.com</link>
	<description>Tường lửa bảo vệ doanh nghiệp, trung tâm thông tin và giá cả</description>
	<lastBuildDate>Sun, 05 Dec 2021 18:54:36 +0000</lastBuildDate>
	<language>vi</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=7.0</generator>

<image>
	<url>https://thegioifirewall.com/wp-content/uploads/vacif_icon-150x150.png</url>
	<title>Palo Alto Networks: Hướng dẫn cấu hình routing ứng dụng đi theo đường internet chỉ định &#8211; Thegioifirewall</title>
	<link>https://thegioifirewall.com</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>Palo Alto Networks: Hướng dẫn cấu hình routing ứng dụng đi theo đường internet chỉ định</title>
		<link>https://thegioifirewall.com/huong-dan-cau-hinh-routing-ung-dung-di-theo-duong-internet-chi-dinh/</link>
					<comments>https://thegioifirewall.com/huong-dan-cau-hinh-routing-ung-dung-di-theo-duong-internet-chi-dinh/#respond</comments>
		
		<dc:creator><![CDATA[TrungNghia]]></dc:creator>
		<pubDate>Wed, 01 Dec 2021 03:34:00 +0000</pubDate>
				<category><![CDATA[Hướng dẫn cấu hình Firewall Palo Alto]]></category>
		<category><![CDATA[Palo Alto Networks: Hướng dẫn cấu hình routing ứng dụng đi theo đường internet chỉ định]]></category>
		<guid isPermaLink="false">https://www.thegioifirewall.com/?p=13442</guid>

					<description><![CDATA[1.Mục đích bài viết Bài viết hướng dẫn cách cấu hình routing ứng dụng đi theo một đường internet được chỉ định. 2.Sơ đồ mạng Chi tiết sơ đồ mạng: Có 2 đang đường đang kết nối vào tường lửa Palo Alto và chạy Load Balacing, đường truyền internet WAN 1 kết nối vào port [&#8230;]]]></description>
										<content:encoded><![CDATA[
<h2 class="wp-block-heading"><strong>1.Mục đích bài viết</strong></h2>



<p class="wp-block-paragraph">Bài viết hướng dẫn cách cấu hình routing ứng dụng đi theo một đường internet được chỉ định.</p>



<h2 class="wp-block-heading"><strong>2.Sơ đồ mạng</strong></h2>



<figure class="wp-block-image size-large"><img fetchpriority="high" decoding="async" width="1024" height="500" src="https://thegioifirewall.com/wp-content/uploads/Drawing1-17-1024x500.png" alt="" class="wp-image-13443" srcset="https://thegioifirewall.com/wp-content/uploads/Drawing1-17-1024x500.png 1024w, https://thegioifirewall.com/wp-content/uploads/Drawing1-17-300x147.png 300w, https://thegioifirewall.com/wp-content/uploads/Drawing1-17-768x375.png 768w, https://thegioifirewall.com/wp-content/uploads/Drawing1-17-1536x751.png 1536w, https://thegioifirewall.com/wp-content/uploads/Drawing1-17.png 1719w" sizes="(max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph"><strong>Chi tiết sơ đồ mạng:</strong></p>



<ul class="wp-block-list"><li>Có 2 đang đường đang kết nối vào tường lửa Palo Alto và chạy Load Balacing, đường truyền internet WAN 1 kết nối vào port ethernet1/1 của Palo Alto Firewall với IP 14.169.x.x.</li><li>Đường truyền WAN đang kết nối vào tường lửa Palo Alto tại port ethernet1/2 với IP 192.168.15.2.</li><li>Port ethernet1/4 sẽ thuộc vùng LAN của tường lửa Palo Alto có IP 172.16.31.1/24 và đã được cấu hình DHCP để cấp phát IP.</li><li>Cuối cùng là 2 laptop trong mạng LAN.</li><li>Laptop 1 có IP 172.16.31.100/24.</li><li>Laptop 2 có IP 172.16.31.101/24.</li></ul>



<h2 class="wp-block-heading"><strong>3.Tình huống cấu hình</strong></h2>



<p class="wp-block-paragraph">Chúng ta sẽ thực hiện cấu hình routing ứng dụng để khi người dùng trên laptop 1 sử dụng ứng dụng Skype thì traffic của ứng dụng này sẽ đi bằng đường WAN 1.</p>



<p class="wp-block-paragraph">Tương tự chúng ta sẽ cấu hình routing ứng dụng để khi người dùng trên laptop 2 sử dụng ứng dụng Telegram thì traffic của ứng dụng này sẽ đi bằng đường WAN.</p>



<h2 class="wp-block-heading"><strong>4.Các bước thực hiện</strong></h2>



<ul class="wp-block-list"><li>Tạo Address Objects cho Laptop 1 và Laptop 2.</li><li>Tạo Security Policy cho Laptop 1.</li><li>Tạo Security Policy cho Laptop 2.</li><li>Kiểm tra kết quả.</li></ul>



<h2 class="wp-block-heading"><strong>5.Hướng dẫn cấu hình</strong></h2>



<h3 class="wp-block-heading"><strong>5.1.Tạo Address Objects cho Laptop 1 và Laptop 2</strong></h3>



<p class="wp-block-paragraph">Để tạo vào Objects &gt; Addresses &gt; nhấn Add và tạo với các thông số sau:</p>



<ul class="wp-block-list"><li>Name: Laptop 1.</li><li>Type: IP Netmask – 172.16.31.100.</li><li>Nhấn OK.</li></ul>



<figure class="wp-block-image size-large"><img decoding="async" width="1024" height="308" src="https://thegioifirewall.com/wp-content/uploads/1-64-1024x308.png" alt="" class="wp-image-13444" srcset="https://thegioifirewall.com/wp-content/uploads/1-64-1024x308.png 1024w, https://thegioifirewall.com/wp-content/uploads/1-64-300x90.png 300w, https://thegioifirewall.com/wp-content/uploads/1-64-768x231.png 768w, https://thegioifirewall.com/wp-content/uploads/1-64-1536x462.png 1536w, https://thegioifirewall.com/wp-content/uploads/1-64.png 2001w" sizes="(max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Tương tự nhấn Add 1 lần nữa để tạo Address Objects cho Laptop 2 với thông số sau:</p>



<ul class="wp-block-list"><li>Name: Laptop 2.</li><li>Type: IP Netmask – 172.16.31.101.</li><li>Nhấn OK.</li></ul>



<figure class="wp-block-image size-large"><img decoding="async" width="1024" height="308" src="https://thegioifirewall.com/wp-content/uploads/2-60-1024x308.png" alt="" class="wp-image-13445" srcset="https://thegioifirewall.com/wp-content/uploads/2-60-1024x308.png 1024w, https://thegioifirewall.com/wp-content/uploads/2-60-300x90.png 300w, https://thegioifirewall.com/wp-content/uploads/2-60-768x231.png 768w, https://thegioifirewall.com/wp-content/uploads/2-60-1536x462.png 1536w, https://thegioifirewall.com/wp-content/uploads/2-60.png 2000w" sizes="(max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Nhấn Commit và OK để lưu các thay đổi cấu hình.</p>



<h3 class="wp-block-heading"><strong>5.2.Tạo Security Policy cho Laptop 1</strong></h3>



<p class="wp-block-paragraph">Để tạo vào Policies &gt; Security &gt; nhấn Add.</p>



<p class="wp-block-paragraph">Tạo với các thông số sau:</p>



<p class="wp-block-paragraph">General tab</p>



<ul class="wp-block-list"><li>Name: Routing_Laptop1_For_Skype</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="563" src="https://thegioifirewall.com/wp-content/uploads/3-62-1024x563.png" alt="" class="wp-image-13446" srcset="https://thegioifirewall.com/wp-content/uploads/3-62-1024x563.png 1024w, https://thegioifirewall.com/wp-content/uploads/3-62-300x165.png 300w, https://thegioifirewall.com/wp-content/uploads/3-62-768x422.png 768w, https://thegioifirewall.com/wp-content/uploads/3-62-1536x844.png 1536w, https://thegioifirewall.com/wp-content/uploads/3-62.png 1752w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Source tab:</p>



<ul class="wp-block-list"><li>Source Zone: nhấn Add và chọn LAN zone.</li><li>Source Address: nhấn Add và chọn Address Objects Laptop 1.</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="601" src="https://thegioifirewall.com/wp-content/uploads/4-65-1024x601.png" alt="" class="wp-image-13447" srcset="https://thegioifirewall.com/wp-content/uploads/4-65-1024x601.png 1024w, https://thegioifirewall.com/wp-content/uploads/4-65-300x176.png 300w, https://thegioifirewall.com/wp-content/uploads/4-65-768x450.png 768w, https://thegioifirewall.com/wp-content/uploads/4-65-1536x901.png 1536w, https://thegioifirewall.com/wp-content/uploads/4-65.png 1746w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Destination tab:</p>



<ul class="wp-block-list"><li>Destination Zone: chọn WAN1.</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="600" src="https://thegioifirewall.com/wp-content/uploads/5-58-1024x600.png" alt="" class="wp-image-13448" srcset="https://thegioifirewall.com/wp-content/uploads/5-58-1024x600.png 1024w, https://thegioifirewall.com/wp-content/uploads/5-58-300x176.png 300w, https://thegioifirewall.com/wp-content/uploads/5-58-768x450.png 768w, https://thegioifirewall.com/wp-content/uploads/5-58-1536x900.png 1536w, https://thegioifirewall.com/wp-content/uploads/5-58.png 1748w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Application tab:</p>



<ul class="wp-block-list"><li>Nhấn Add và chọn Skype.</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="561" src="https://thegioifirewall.com/wp-content/uploads/6-57-1024x561.png" alt="" class="wp-image-13449" srcset="https://thegioifirewall.com/wp-content/uploads/6-57-1024x561.png 1024w, https://thegioifirewall.com/wp-content/uploads/6-57-300x164.png 300w, https://thegioifirewall.com/wp-content/uploads/6-57-768x421.png 768w, https://thegioifirewall.com/wp-content/uploads/6-57-1536x841.png 1536w, https://thegioifirewall.com/wp-content/uploads/6-57.png 1751w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Action tab:</p>



<ul class="wp-block-list"><li>Action: chọn Allow.</li><li>Log Setting: chọn Log at Session End.</li><li>Nhấn OK.</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="528" src="https://thegioifirewall.com/wp-content/uploads/7-48-1024x528.png" alt="" class="wp-image-13450" srcset="https://thegioifirewall.com/wp-content/uploads/7-48-1024x528.png 1024w, https://thegioifirewall.com/wp-content/uploads/7-48-300x155.png 300w, https://thegioifirewall.com/wp-content/uploads/7-48-768x396.png 768w, https://thegioifirewall.com/wp-content/uploads/7-48-1536x792.png 1536w, https://thegioifirewall.com/wp-content/uploads/7-48.png 1751w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Nhấn Commit và OK để lưu các thay đổi cấu hình.</p>



<h3 class="wp-block-heading"><strong>5.3.Tạo Security Policy cho Laptop 2</strong></h3>



<p class="wp-block-paragraph">Để tạo vào Policies &gt; Security &gt; nhấn Add.</p>



<p class="wp-block-paragraph">Tạo với các thông số sau:</p>



<p class="wp-block-paragraph">General tab</p>



<ul class="wp-block-list"><li>Name: Routing_Laptop1_For_Telegram</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="556" src="https://thegioifirewall.com/wp-content/uploads/8-49-1024x556.png" alt="" class="wp-image-13451" srcset="https://thegioifirewall.com/wp-content/uploads/8-49-1024x556.png 1024w, https://thegioifirewall.com/wp-content/uploads/8-49-300x163.png 300w, https://thegioifirewall.com/wp-content/uploads/8-49-768x417.png 768w, https://thegioifirewall.com/wp-content/uploads/8-49-1536x834.png 1536w, https://thegioifirewall.com/wp-content/uploads/8-49.png 1747w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Source tab:</p>



<ul class="wp-block-list"><li>Source Zone: nhấn Add và chọn LAN zone.</li><li>Source Address: nhấn Add và chọn Address Objects Laptop 2.</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="595" src="https://thegioifirewall.com/wp-content/uploads/9-48-1024x595.png" alt="" class="wp-image-13452" srcset="https://thegioifirewall.com/wp-content/uploads/9-48-1024x595.png 1024w, https://thegioifirewall.com/wp-content/uploads/9-48-300x174.png 300w, https://thegioifirewall.com/wp-content/uploads/9-48-768x446.png 768w, https://thegioifirewall.com/wp-content/uploads/9-48-1536x892.png 1536w, https://thegioifirewall.com/wp-content/uploads/9-48.png 1747w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Destination tab:</p>



<ul class="wp-block-list"><li>Destination Zone: chọn WAN.</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="585" src="https://thegioifirewall.com/wp-content/uploads/10-44-1024x585.png" alt="" class="wp-image-13453" srcset="https://thegioifirewall.com/wp-content/uploads/10-44-1024x585.png 1024w, https://thegioifirewall.com/wp-content/uploads/10-44-300x172.png 300w, https://thegioifirewall.com/wp-content/uploads/10-44-768x439.png 768w, https://thegioifirewall.com/wp-content/uploads/10-44-1536x878.png 1536w, https://thegioifirewall.com/wp-content/uploads/10-44.png 1744w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Application tab:</p>



<ul class="wp-block-list"><li>Nhấn Add và chọn Telegram.</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="553" src="https://thegioifirewall.com/wp-content/uploads/11-45-1024x553.png" alt="" class="wp-image-13454" srcset="https://thegioifirewall.com/wp-content/uploads/11-45-1024x553.png 1024w, https://thegioifirewall.com/wp-content/uploads/11-45-300x162.png 300w, https://thegioifirewall.com/wp-content/uploads/11-45-768x415.png 768w, https://thegioifirewall.com/wp-content/uploads/11-45-1536x829.png 1536w, https://thegioifirewall.com/wp-content/uploads/11-45.png 1752w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Action tab:</p>



<ul class="wp-block-list"><li>Action: chọn Allow.</li><li>Log Setting: chọn Log at Session End.</li><li>Nhấn OK.</li></ul>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="522" src="https://thegioifirewall.com/wp-content/uploads/12-41-1024x522.png" alt="" class="wp-image-13455" srcset="https://thegioifirewall.com/wp-content/uploads/12-41-1024x522.png 1024w, https://thegioifirewall.com/wp-content/uploads/12-41-300x153.png 300w, https://thegioifirewall.com/wp-content/uploads/12-41-768x391.png 768w, https://thegioifirewall.com/wp-content/uploads/12-41-1536x783.png 1536w, https://thegioifirewall.com/wp-content/uploads/12-41.png 1750w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Nhấn Commit và OK để lưu các thay đổi cấu hình.</p>



<h2 class="wp-block-heading"><strong>5.4.Kiểm tra kết quả</strong></h2>



<p class="wp-block-paragraph">Chúng ta sẽ thực hiện sử dụng 2 ứng dụng Skype và Telegram để kiểm tra kết quả.</p>



<p class="wp-block-paragraph">Trên Laptop1 sử dụng ứng dụng Skype để gọi điện thoại.</p>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="541" src="https://thegioifirewall.com/wp-content/uploads/16-33-1024x541.png" alt="" class="wp-image-13456" srcset="https://thegioifirewall.com/wp-content/uploads/16-33-1024x541.png 1024w, https://thegioifirewall.com/wp-content/uploads/16-33-300x159.png 300w, https://thegioifirewall.com/wp-content/uploads/16-33-768x406.png 768w, https://thegioifirewall.com/wp-content/uploads/16-33-1536x812.png 1536w, https://thegioifirewall.com/wp-content/uploads/16-33-2048x1082.png 2048w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Sau đó vào Monitor &gt;&nbsp; Logs &gt; Traffic để kiểm tra.</p>



<p class="wp-block-paragraph">Kết quả chúng ta có thể thấy được là traffic của ứng dụng Skype mà Laptop1 sử dụng đã đi qua đường WAN1 với policy Routing_Laptop1_For_Skype.</p>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="167" src="https://thegioifirewall.com/wp-content/uploads/13-38-1024x167.png" alt="" class="wp-image-13458" srcset="https://thegioifirewall.com/wp-content/uploads/13-38-1024x167.png 1024w, https://thegioifirewall.com/wp-content/uploads/13-38-300x49.png 300w, https://thegioifirewall.com/wp-content/uploads/13-38-768x125.png 768w, https://thegioifirewall.com/wp-content/uploads/13-38-1536x250.png 1536w, https://thegioifirewall.com/wp-content/uploads/13-38-2048x334.png 2048w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Tương tự laptop 2 chúng ta cũng sử dụng ứng dụng Telegram gọi điện thoại.</p>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="767" src="https://thegioifirewall.com/wp-content/uploads/20-23-1024x767.png" alt="" class="wp-image-13457" srcset="https://thegioifirewall.com/wp-content/uploads/20-23-1024x767.png 1024w, https://thegioifirewall.com/wp-content/uploads/20-23-300x225.png 300w, https://thegioifirewall.com/wp-content/uploads/20-23-768x575.png 768w, https://thegioifirewall.com/wp-content/uploads/20-23-1536x1151.png 1536w, https://thegioifirewall.com/wp-content/uploads/20-23-1200x900.png 1200w, https://thegioifirewall.com/wp-content/uploads/20-23-600x450.png 600w, https://thegioifirewall.com/wp-content/uploads/20-23-400x300.png 400w, https://thegioifirewall.com/wp-content/uploads/20-23.png 1799w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>



<p class="wp-block-paragraph">Sau đó vào Monitor &gt;&nbsp; Logs &gt; Traffic để kiểm tra.</p>



<p class="wp-block-paragraph">Kết quả chúng ta có thể thấy được là traffic của ứng dụng Skype mà Laptop2 sử dụng đã đi qua đường WAN với policy Routing_Laptop1_For_Telegram.</p>



<figure class="wp-block-image size-large"><img loading="lazy" decoding="async" width="1024" height="259" src="https://thegioifirewall.com/wp-content/uploads/14-36-1024x259.png" alt="" class="wp-image-13459" srcset="https://thegioifirewall.com/wp-content/uploads/14-36-1024x259.png 1024w, https://thegioifirewall.com/wp-content/uploads/14-36-300x76.png 300w, https://thegioifirewall.com/wp-content/uploads/14-36-768x194.png 768w, https://thegioifirewall.com/wp-content/uploads/14-36-1536x388.png 1536w, https://thegioifirewall.com/wp-content/uploads/14-36-2048x517.png 2048w" sizes="auto, (max-width: 1024px) 100vw, 1024px" /></figure>
]]></content:encoded>
					
					<wfw:commentRss>https://thegioifirewall.com/huong-dan-cau-hinh-routing-ung-dung-di-theo-duong-internet-chi-dinh/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
			</item>
	</channel>
</rss>
