- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
Note: In order to view ALL of the articles in this section and to engage in discussions on this platform, you must register for an account on LIVEcommunity. Some articles may not be viewable to unregistered users.
Note: In order to create a case, please create or active an account and register your device, which can be done in the Customer Support Portal. This area provides product support for all Palo Alto Networks Customers.
Terraform Template that deploys a two-tier containerized application on AKS secured by VM-Series
Uses a Terraform template to deploy (2) two-tiered containerized applications (Guestbook app and a WordPress server) within an AKS cluster that is protected by the VM-Series in an Application Gateway/Load Balancer sandwich.
Palo Alto Networks Community Supported
https://github.com/PaloAltoNetworks/AKS-k8s-north-south-inspection
Azure-FW-4-Interfaces
Deploys a VM-Series with 4 interfaces into an existing Microsoft Azure environment.
Palo Alto Networks Community Supported
Azure-FW-3-Interfaces
Deploys a VM-Series with 3 interfaces (1-MGMT and 2-Dataplane) into an existing Microsoft Azure environment.
Palo Alto Networks Community Supported
Multiple Azure interface variations
Several ARM templates for the VM-Series with varying options including multiple interfaces.
Palo Alto Networks Community Supported
Azure-2-Firewalls-Public-Load-Balancer
Deploys a Public Azure Load Balancer in front of 2 VM-Series firewalls with the following features:
Note: This template deploys into existing VNETs and storage accounts within the same region. As a result, the storage account and VNET must be created before deploying this template.
Palo Alto Networks Community Supported
https://github.com/kytx42/Azure/tree/master/Azure-2FW-Public-LB
Managed Scale and Resiliency for the VM-Series on Microsoft Azure
An ARM template that deploys two VM-Series firewalls between a pair of Azure load balancers to deliver managed scale and high availability for internet facing applications.
Palo Alto Networks Community Supported
https://github.com/PaloAltoNetworks/azure-applicationgateway
Using VM-Series Firewalls to Secure Internet-Facing Web Workloads
This template creates a highly available VM-Series security solution for Azure for both inbound traffic and outbound traffic. It uses VM-Series firewall pairs coupled with Azure load balancers for a fully redundant security solution.
Auto Scaling the VM-Series-firewall on Azure v1.0
Templates and scripts that deploy Azure Load Balancers and the VM-Series firewalls to deliver security for internet facing applications. Allows for protecting of new or existing workloads.
Azure Transit VNet with the VM-Series
Deploys a Hub and Spoke architecture to centralize commonly used services such as security and secure connectivity. All traffic to and from the Spokes will 'transit' the Hub VNet and will be protected by the VM-Series next generation firewall.
Azure Transit VNET architecture with auto scaling VM-Series in application spoke
Deploys a Hub and Spoke architecture to centralize commonly used services such as security and secure connectivity. All traffic to and from the Spokes will 'transit' the Hub VNET and will be protected by the VM-Series next generation firewall. Version 1.1 adds ability to do auto scaling for VM-Series to protect Internet facing applications running in a spoke VNET.
Two tier application environment protected by VM-Series
ARM template that deploys a two-tiered web/DB application environment secured by a VM-Series firewall. Template includes relevant User-Defined Route (UDR) tables to send all traffic through the VM-Series firewall.
Terraform two tier application environment protected by VM-Series
A Terraform Template that deploys two-tiered web/DB application environment secured by a VM-Series firewall.
Palo Alto Networks Community Supported
https://github.com/PaloAltoNetworks/terraform-templates/blob/master/azure_two_tier_sample
Azure VM Monitoring
Python script that harvests Azure VM properties and publishes them as IP-tag mappings that can be used in a Dynamic Address Group.
Palo Alto Networks Community Supported
Palo Alto Networks Ansible Modules
Ansible modules that automate configuration and operational tasks on Palo Alto Networks physical or virtualized firewalls. The underlying protocol uses API calls that are wrapped within Ansible framework.
Palo Alto Networks Community Supported
Provider for PAN-OS
Automates various configuration and policy aspects of the Palo Alto Networks physical or virtualized next generation firewalls and Panorama.
Palo Alto Networks Community Supported
Palo Alto Networks Repository of Terraform Templates to Secure Workloads on AWS and Azure
Terraform Templates that deploy 3-tier and 2-tier applications along with VM-Series firewalls on AWS and Azure.
The templates provided in these repositories provide best practice guidelines to deploy workloads on public cloud platforms and to secure these workloads using the VM-Series firewall.
Palo Alto Networks Community Supported
Palo Alto Networks Device Framework
A framework for interacting with Palo Alto Networks devices (including Next-generation Firewalls and Panorama) using the device API that is object oriented and conceptually similar to interaction with the device via the GUI or CLI.
Palo Alto Networks Community Supported
IronSkillet Templates
A set of day one configuration templates and code snippets that enable the assembly of full config files or modification of existing policies that can be used to bootstrap a firewall, imported directly to a firewall or through Panorama.
Palo Alto Networks Community Supported
PANHandler Config Templates
Enables management and sharing of full PAN-OS device configurations, or a set of configuration elements.
Palo Alto Networks Community Supported
PAN-OS Bootstrapper Archive Package
A tool to quickly build all required files to bootstrap a Pala Alto Networks NGFW device. This usually requires a customized bootstrap.xml, init-cfg.txt, and a license file. The output will be an archive package, either ISO or ZIP, with all required files fully compiled from the supplied templates and input variables.
Palo Alto Networks Community Supported
Flexible Cloud Automation Tool (FCA)
Enables users to create public cloud templates using data about the deployment beyond architecture diagrams. FCA will deploy (and configure) the VM-Series along with all the supporting components such as, route tables, load balancers, all networking components, IPSEC tunnels, and security groups.
Palo Alto Networks Community Supported
Views | Replies |
---|---|
241 | 3 |
152 | 0 |
222 | 1 |
197 | 0 |
656 | 1 |
693 | 2 |
635 | 1 |