This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Cloud NGFW for AWS Discussions
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cloud NGFW for AWS Discussions

Discussions

Start a conversation

Welcome to the Cloud NGFW for AWS Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 2413 Views
  • 0 replies
  • 0 Likes

Resolved! AWS PA-VM X-Forwarded-For IP Adderss Check.

Hi. We are currently building a test environment using paloalto PA-VM in AWS The configuration is as follows. Here's the problem 1. MONITOR -> Traffic can check web connection logs but not X-Forwarded for IP address What should I check?Please check.Thank you. ※ This feature has enabled DEVICE -> X-Forwarded-For Headers -> ...

YChoi_0-1712537260431.png
YChoi_3-1712537677414.png
YChoi_1-1712537489899.png
Y.Choi by L0 Member
  • 7356 Views
  • 3 replies
  • 0 Likes

Azure Cloud NGFW

In the doco I see that Cloud NGFW for Azure can automatically scale to 40 instances and support 100Gbps in a vNet. I do not see any details for the config of autoscaling. Do I need to configure the autoscaling or does it just happen?

Use onprem hosted EDL from AWS CNGFW

Is it somehow possible to load an EDL from a server located in onprem network (not reachable from Internet)? From which interface / IP address does the AWS CNGFW tries to connect to EDL server? Can it make connection from an interface / IP address located in customer VPC? Could not find any documentation for this specific topic.

Anon1 by L4 Transporter
  • 1565 Views
  • 0 replies
  • 0 Likes

Resolved! Why is pan-db downloaded?

Hello, everyone. I'm using only ATP(Advanced Threat Prevention) license for AWS firewall.However, I see PAN-DB is continuously being downloaded in system log.Why is PAN-DB still being downloaded even though I am not using URL license? I was using pan-os-10.2.8-h5 and tried upgrading to 10.2.11, but the same problem occurred.

sseo333111_0-1724653889978.png
sseo333111_1-1724653924427.png
sseo333111_3-1724654001227.png

CNGFW integration with Panorama

To integrate the Cloud NGFW service with Panorama virtual appliance, panorama running software version 10.2, 11.0, or 11.1 and not greater than 11.1 as per the below KB Article. Panorama Integration Prerequisites However, I recently deployed VM Series Panorama running on 11.2.4-h1, which being integrated with CNGFW (azure plugin version 5.2.1)...

Welcome to the Cloud NGFW for AWS Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 2413 Views
  • 0 replies
  • 0 Likes

Generated Certificate Not Showing

Running PAN OS 10.2.2-h2 and generated a certificate. The cert doesn't display in the gui under Device Certificates. I created it again and it said that there are duplicate certificates now. I am new to Palo and not sure how else I can go about viewing the certs that I generated or how to go about removing them. Thank you

mjgrlg72 by L1 Bithead
  • 19319 Views
  • 10 replies
  • 0 Likes

Unable to create cloud NGFW

In the cloudngfw web console, we have added several AWS accounts My user has tenant admin, inventory admin, globalrulestack admin, localrulestack admin, but I am unable to get local/global firewall admin. The option for the user account does not appear. Because of this I can't create NGFW objects in the AWS environments Why could this be? Wh...

Megretz by L1 Bithead
  • 3655 Views
  • 1 replies
  • 0 Likes

Panorama managed Cloud NGFW (AWS) - Internal FQDNs

I'm currently planning on setting up and testing Cloud NGFW in AWS and have a question about using Panorama for management. Specifically, is it possible to use internal FQDNs with NGFW instances? Can these instances resolve internal FQDNs using our own DNS servers or even AWS-provided DNS servers? I know this is possible with Prisma Access, but ...

vsurresh by L1 Bithead
  • 4252 Views
  • 3 replies
  • 0 Likes

Unable to enable programmic access for CloudNGFW

https://pan.dev/cloudngfw/aws/api/ https://github.com/PaloAltoNetworks/cloud-ngfw-aws-examples using the Git Repo's get_pa_token.py I get the following error Traceback (most recent call last):File "C:\Users\xxxxx\cloud-ngfw-aws-examples\programmatic_access\get_pa_token.py", line 138, in <module>assert resp_dict['ResponseStatus']['ErrorC...

Cloud NGFW endpoints for AWS

Hello, Did anyone reach the limit of 50 endpoints on the firewall service for the aws VPC's? Also i was told that this 50 limit can be extended to 200. Is it true? if so how to extend. If we can extended what are the limitations on reaching the 200 limit, any drawbacks to the firewall service. Regards, Narendar.

  • 43 Posts
  • 93 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks