HA GlobalProtect firewalls in Azure

I would like to deploy GP firewalls in Azure, I would like to configure 2 firewalls which are working active-active to have always some protection if one availability zone will have maintenance always second fw will handle the traffic. I was think to

Failed logins from 127.0.0.1

Hello all. In my VM logs, I'm seeing a failed login like this every 5 seconds:

Authorization failed for user admin via Web from 127.0.0.1 : user admin role is not defined.

This is a single VM-100 implementation, no Panorama. Any help on where this m

Unable to deploy VM Series bundle1 and Marketplace agreement fails with ResourcePurchaseValidationFailed

Hello, I am working on a PoC setup having bundle1 Vm series PAFW for a client using Terraform in Azure but no matter what I do I always blocked by Marketplace license. 

• When I create the VM with Marketplace agreement, the terraform api for Azure compl

Palo Alto VM migration on Azure

Log forwarding from Cloud NGFW in Azure to Log Analytics Workspace for Sentinel

Hi

I’m planning to replace Azure Firewall with Cloud NGFW in Azure, managed through SCM.

In addition to using Strata Logging Service (SLS), we also need to forward firewall logs to an Azure Log Analytics Workspace for Microsoft Sentinel (SIEM/SOA

Global Protect Deployment on GCP

Hi,

How we can deploy Global Protect on Google Cloud Platform?

In GCP we have deploy VM-Series Firewall in Sandwich architecture, now we want to configure Global Protect can yoy suggest best pratice for the same.

Data Plane CPU utilization Reaches more than 90 %

model: PA-VM
vm-license: VM-SERIES-4
vm-cap-tier: T2-14GB
vm-cpu-count: 4

Data Plane CPU utilization Reaches more than 90 % . Is there any Limit on PPS for Azure VM-SERIES-4 . I think 525895 Kbps is well under the limit . Is PPS causing the issue ? . Se

Help Needed: NAT & Security Policy Configuration for Azure LB → Palo Alto → DMZ Webserver (Public IP)

Hello Team,

Goal:
I want to access the DMZ Webserver (Public IP) via the Azure Load Balancer Public IP.

Current Setup:

• Azure Public Load Balancer is created with Frontend IP, Backend Pool, and Health Probe.

• Palo Alto Firewall VM is added to the backend po

A new comment has been added on a case [Case#: 03799775] - After upgrade serial number has change and HA is not working: New Serial : 007951000449149

Hi Team,

We are waiting for your new zoom meeting invite. please reply call is already opened  

ARM Template fails due to Availability Set

Hi All,

I am trying to deploy Azure-1FW-3-Interfaces-existing-environment using following ARM template

https://github.com/PaloAltoNetworks/ReferenceArchitectures/tree/master/Azure-1FW-3-interfaces-existing-environment

However, deployment fails du

VM Series Azure Active/Active Deployment

Hi All, 

I want to deploy two PA firewall in Azure, in an existing resource group in an Active / Active scenario. Inside Load Balancer will be used to distribute traffic. Should I also setup HA to store active session, NAT, etc. In case one VM goes d

VM-Series Next Generation Firewall in Azure

Hi All, 

Can you please share any official document that guide VM-Series Next Generation Firewall (Virtual machine) with BYOL option. I need your help around this as I couldn't get any dedicated document to build steps. Only document I could find i

AWS GWLB with secondary appliance in chain

I'm working with a dedicated inspection VPC+GWLB for the first time. I have the TGW, GWLB, and general routing working with just the Palo in play. East west traffic from vpc1 to vpc2 is correctly going into the inspection VPC and I can see the traffi