Palo Alto does not advertise and support it because it does not benefit them. In this area, their main battleground is the public cloud where Prisma Access is running. So for products running in the public cloud (mainly AWS), it seems that they are updated with every new PAN-OS that comes out. Private clouds, in this case, Network Functions Virtualization (NFV), can achieve unified High Availability (HA) through live migration, scale up through physical enclosure replacement, expand physical enclosure to scale out. If we follow Moore's Law, the capacity of NFV doubles in 18 months simply by replacing the physical enclosure. In a virtualized product, capacity and performance can be determined by us, who can choose the physical enclosure, not the manufacturer. Conversely, if we are using an old physical enclosure, then of course it will not perform. Performance and capacity is our responsibility as users, not the manufacturer. Physical enclosures without an OS are cheap, but physical enclosures that work as products (i.e., traditional network devices) are very expensive. Once manufacturers officially support live migration, what used to require multiple physical enclosures for HA will be able to be one virtualized product. If the virtualized product is not a subscription license, these facts are a manufacturer's nightmare. For the above reasons, Palo Alto has little benefit in supporting performance and promoting performance in specific environments with respect to its products for the private cloud, even though there are risks. Maybe they want to stop selling and supporting some of their products per se (I think so, especially for the KVM). And the benefit of advertising the performance improvements of NFV-related products lies with the hardware vendors selling the physical enclosures and the manufacturers of the hypervisors. So you're looking at the wrong people for capacity and performance support. You should be looking to the hypervisor and hardware manufacturers.
... View more