VM-Series in the Public Cloud

AVD VMs Unavailable When Traffic Passes Through Palo Alto Firewall

Hi All,

We’re facing an issue where AVD VMs show as unavailable when routed through the Palo Alto firewall. Required URLs and services are already whitelisted as per Microsoft documentation. Even with an ANY-ANY rule and no security profiles, the iss

PANW aws vm-series ipsec tunnel ip /30 Tunnel interface

Question on aws vm series ipsec tunnel ip /30 Tunnel interface

Hello Livecommunity, how is it going? I hope it's going well

I have a doubt, thinking in vmseries on Amazon, where from the virtual stick arme several ipsec tunnels site to sire eit

SSH certificate authentication

Hi,

I wanted to know if it is possible to require SSH certificate authentication as opposed to password authentication when doing a SSH logging into azure-hosted VM-series virtual firewalls? If this is possible, where can I find documentation that ad

Firewalls in Active Active using Azure Internal Load balancer

Hi, we have deployed Palo-alto firewalls on Azure and a Standard Internal Load Balancer with single front-end IP and single backend pool, does LB maintain session state if -

(1) communication is sourced from Azure VNET destined to On-premise ?

(2) co

unable to loing kvm and esxi vm series

we are facing the challenge to deply vm-series 30 days trial series in our virtual environment. need support.

palo alto cfg.general.need-acknowledgement-to-login no_matches

Palo Alto VM-Series in Azure DMZ - AVS

 Okay see if I can word this as best as possible. I made up the network IP addresses for this diagram.

We are in the progress of migrating one of our on-prem DC to the Azure public Cloud.  Obstacle we are facing is with how the DMZ will look and wo

IPSec Tunnel is up but not passing traffic (On-Prem to Azure Palo Alto VM)

Hi guys.

GOAL:
I have an office in India with several users. They need to access a server in Azure that sits behind Virtual PA using Global Protect.

I have successfully setup an IPSec Tunnel between my On-prem PA and an Azure PA, however, I am not pa

PAN OS 11.1.6 AWS GWLB Bug

Hi All,

Just an informative post.  There is an unreleased bug in PAN OS 11.1.6 which causes the source username to be displayed as junk values in the traffic logs, which has an impact on any firewall rules that rely on user/groups for authorization. 

AWS GWLB Target Failover setting

Somewhat of a silly question.  Have a GWLB configured with 2 vm-series firewalls as targets (1 fw in us-east-1a and the other in us-east-1b).  

Under the target group configuration, there is a recommended setting to be enabled for Target Failover

Spin up Palo Alto firewall VM in Azure via Terraform

Hello Team,
I am trying to spin up vm series palo in azure via terraform. 
I am creating a linux virtual machine and trying to install pan-os into it from the market place and below is image reference i am using.

VM series Firewalls not removing license on autoscale

So we have had a series of autoscaling VM series in AWS for a while now. We've had a slew of problems with them but the current one I am fighting is that they don't remove the license during an event. This means that the new spun up firewall fails as