VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

AWS IPSec tunnel active/active HA with BGP

Looking for some help here.  I have an ongoing case with support concerning AWS tunnel issues.  My production FWs are active/active but not in sync.  Just always been that way, it's the way I inherited it.  I have 4 tunnels to AWS (2 on each FW) BGP

...

jdemares by L1 Bithead
  • 1347 Views
  • 0 replies
  • 0 Likes

Unable to change subnet for Cloud NGFW

I cannot change the subnet for two Cloud NGFW endpoints on the Portal. The admin portal says I am not authorized even though I am a tenant admin.

I am trying to change the subnet because the subnets the firewalls are configured to no longer exists a

...

MAlafif1_0-1666286289988.png
MAlafif1_1-1666286373661.png
MAlafif1 by L0 Member
  • 1219 Views
  • 0 replies
  • 0 Likes

Resolved! D-NAT not working in GCP

Hello Everyone,

 

I have deployed PA-VM in GCP. In that we have configured 3 VPCs (MGMT, Untrust & Trust).

 

In the Trust VPC we have created Windows Server 2016, in PA we created D-NAT & Security policy.

 

In GCP, Under Trust VPC Firewall Ingress tr

...

age out error

Hello

 

I'm deploying a Palo Alto on Azure. I want to use 2 interfaces : one interface (eth1/1 configured with public-vr router) dedicated for Internet outbound (including for users connected with Globalt Protect) and one interface (eth1/2 configured

...

jeromecarrier_3-1666159914623.png
jeromecarrier_0-1666159756264.png
jeromecarrier_1-1666159817388.png
jeromecarrier_2-1666159843517.png

Packets being denied intermittently.

My company has had an issue for over a year and Palo Alto cant figure it out.  We're using Azure's Palo Alto offering.

 

* We have a security rule that is sourced from our trusted paas  and destined  to Azures Paas storage.  Port 1433 app id: mssql db

...

AWS and Inbound SSL Inspection

Hello all,

 

After some help as not getting much from support.

We have a customer with an Amazon AWS solution. We have a web server in the trust zone and we have been asked to set up inbound ssl inspection.

There is a load balancer after the firewall

...

GCP Deployment

Hi,

 

I'm trying to deploy two tier architecture in my lab.

Below is the VPC & Subnet  details:-

VPCSubnetIP RangeMGMTmgmt-zone192.168.0.0/24Trusttrust-zone192.168.1.0/24Untrustuntrust-zone192.168.2.0/24

 

PA-VM has been deployed successfully & also

...

  • 619 Posts
  • 80 Subscriptions
Top Solution Authors
Top Liked Authors
Labels