This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3501 Views
  • 0 replies
  • 0 Likes

CUSTOMER ADVISORY: Required Action for Azure hosted VM-Series & AIRS Instances

Subject: Mechanism to prevent pairing to Microsoft Azure Network Adapter (MANA) for VM-Series and AIRS Firewalls to avoid throughput degradation. Overview Microsoft is rolling out the new Microsoft Azure Network Adapter (MANA) hardware across existing Azure VM sizes families. While MANA is designed to enhance performance for modern workloads, ce...

Failed logins from 127.0.0.1

Hello all. In my VM logs, I'm seeing a failed login like this every 5 seconds:Authorization failed for user admin via Web from 127.0.0.1 : user admin role is not defined. This is a single VM-100 implementation, no Panorama. Any help on where this might be coming from? Edit to add: Currently running PANOS 11.2.8. In looking at release notes, ...

Connectivity with Panorama

Hi, We have deployed VM-Series NGFW in GCP in sandwitch architecture (attached architecture diagram). Customer having On-Premises Panorama, which they want to integrate with VM-Series NGFW, between On-Premises & GCP IPsec Tunnel is configured. based on architecture how we can connect VM-Series NGFW with Panorama.

AWS vpc Global Protect terraform deployment

Unsure if this is the correct discussion group. I'm a newbie to PAN and want to learn more. The scenario I have is that we are using PAN Global Protect on my laptop and I wish to connect to our EC2 instances in our AWS vpc with the proper subnets routing. I use terraform and I have found the PAN terraform modules:https://pan.dev/terraform/doc...

weswork by L0 Member
  • 526 Views
  • 2 replies
  • 0 Likes

error: azure marketplace vm-series do not bootstrap

Template VM-Series Next-Generation Firewall from Palo Alto Networks (byol) -------------------------------------------------------------------------------- bootstrap content type=dhcp-client; hostname=eskfw81; vm-auth-key=xxxxxxx; panorama-server=xxxxxxx; tplname=xxxx-stack; dgname=xxx; dns-primary=8.8.8.8; dns-secondary=4.4.4.4; op-command-mo...

Argiros by L1 Bithead
  • 3768 Views
  • 1 replies
  • 0 Likes

How do I access init-cfg.txt

Per the advisory "Update to Additional PAN-OS Certificate Expirations and New, Comprehensive Certificate Management Process" I am supposed to edit the init-cfg.txt file but I do not know where to find this file nor how to access it. I have checked the extensions-applications on the VM but there is nothing there. I checked the resource group a...

Palo vm-series cloudwatch plugin no metrics

Hi all, I’m trying to get my Palo Alto VM-Series firewall metrics to appear in CloudWatch, but nothing is showing up. I’ve verified the following: IAM policy is correctly configured Trust Policy Permission policy: VM-Series version: 10.2.13-h7 CloudWatch namespace and i...

MGT_LIBEJ_0-1769640750765.png
MGT_LIBEJ_1-1769640750896.png

HA GlobalProtect firewalls in Azure

I would like to deploy GP firewalls in Azure, I would like to configure 2 firewalls which are working active-active to have always some protection if one availability zone will have maintenance always second fw will handle the traffic. I was think to have 2 portals and 2 gateways, on 2 different Public IP which will be resolved on one DNS name. ...

bxbukows by L1 Bithead
  • 5247 Views
  • 7 replies
  • 1 Likes

Resolved! Which AWS Instance Type Meets VM-300 Requirements? Documentation Seems Inconsistent

I’m confused because there seems to be a contradiction in the documentation regarding the choice of AWS instance type for deploying a VM-300 using NGFW Software Credits.Could you clarify which AWS instance type meets the requirements for running VM-300? ■VM-Series Performance & Capacity on Public Clouds – VM-Series on Amazon Web Services Per...

How does the Azure Virtual Network discovers that there is Palo Alto Gateway Interface

Hello, I am trying to wrap my head around the PA deployment in azure using PA Series. I am basically following this video on setting up 2 zones, 2 Virtual routers, and route rules.In my setup the two spoke vnets have UDR with 0.0.0.0/0 route to the trust interface of the PANFW. I created two VRs and associated with the Interfaces. I have also a...

rswarnkar_0-1766036895351.jpeg

Unable to deploy VM Series bundle1 and Marketplace agreement fails with ResourcePurchaseValidationFailed

Hello, I am working on a PoC setup having bundle1 Vm series PAFW for a client using Terraform in Azure but no matter what I do I always blocked by Marketplace license. When I create the VM with Marketplace agreement, the terraform api for Azure complaints that License agreement resource already existWhen I create the VM with Market place agreeme...

Log forwarding from Cloud NGFW in Azure to Log Analytics Workspace for Sentinel

Hi I’m planning to replace Azure Firewall with Cloud NGFW in Azure, managed through SCM. In addition to using Strata Logging Service (SLS), we also need to forward firewall logs to an Azure Log Analytics Workspace for Microsoft Sentinel (SIEM/SOAR). Based on my research, there appear to be two possible approaches: Option 1 - Cloud NGFW f...

A.Hwang by L0 Member
  • 599 Views
  • 0 replies
  • 0 Likes
  • 704 Posts
  • 107 Subscriptions
Latest Comments
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks