This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3508 Views
  • 0 replies
  • 0 Likes

Errors pushing template to firewall -can't find interface in 'vr-private-trust' for next hop - - New Build

Im having a hard time figuring this out, the interafces exist in the template, also exist in the vmseries firewalls themselves and I confirgured them to L3 on the firewalls... 2023-07-12 11:38:39.903 -0500 Error: pan_conn_mgr_callback_expiry_async(cs_conn.c:8788): connmgr: Expired Request. entry:1024, msgno=0 devid=007957000386926-log-collec...

Palo Alto VM series on Microsoft Azure with a Azure load balancer failover?

As the Azure failover based on the plugin is much slower than the same failover in AWS as the Azure API is much slower I am wondering if I can use floating IP address and azure load balancer infront of it? I have done the same for F5 BIG-IP devices and I know that the Azure Load balancer main pool can be the virtual machine local private ip ad...

Resolved! Palo VM with AWS VPC Peering

Hi, We have an AWS setup that contains 3 vpcs namely vpc1, vpc2 and vpc3. We intend to configure VPC Peering using Hub and Spoke (Centralized) configuration such that vpc2 will be the hub and vpc1 and vpc3 the spokes. Placement of the VM Firewall will in the hub and in a HA configuration, Will this VPC peering setup work? Thanks

SuhaimiMohd_0-1687146750507.png

Resolved! Custom PAN-OS Metrics Published for Monitoring

Hi Folks, I'm looking to setup some alerts in Azure based of the PAN-OS custom metrics which are published to Application Insights. First - Does anyone know if the values published represent a point in time when the metrics are posted or an average since the last post? Second - It looks to me like the only identifier for the firewall that gene...

Resolved! CPU for VM Panorama

Hello! I have a question, if I need Panorama to manage virtual firewalls and appliances for the deployment profile, is it enough to just enable panorama?, or is it necessary to add more cpu for panorama? According to the documentation it only adds CPU for the firewalls and only enables Panorama, but I'm not sure if I need more CPU.

NG25_1 by L0 Member
  • 3144 Views
  • 3 replies
  • 0 Likes

Management of palo alto vms for DR in Azure in different regions via Panorama

Hi All, Currently, in our organization we are using Transit Vnet Model and utilizing hub & spoke concept in Azure Cloud. We have different set of firewalls which are filtering East-West & North-South direction traffic respectively in Azure. This setup is available only in one region (East US) of Azure. If something goes wrong in that r...

AWS VM Series Gateway Load Balancers not working

Hi AllHas anyone else had a play with the GWLB on AWS?I know it must be PAN-OS 10.0.2 or higher to work,I have tested with multiple instances, As a bump in the wire it works fine. until you apply NAT, then it doesn't work at all for any traffic that is NAT'd. I have an open TAC for this, they are replicating the fault to work it out but surely t...

Impossible to connect to panorama on Azure - Login prompt doesn't appear

Hello Everyone, How are you? I have a big problem with my panorama. Context: I have set up a Panorama on Azure ( FREE TRIAL ACCOUNT), I upgraded it from 8.1.0 to 9.0.4 and I added Prisma License and install cloud service plugin. Everything was great at this time no problem. I Stopped the VM on Azure during the night and when I have reboote...

2020-01-27 12_02_21Microsoft Teams.png
2020-01-27 11_25_02-52.225.192.199.png
2020-01-27 11_39_21-Login.png

Resolved! VM-100 on Azure doesn't load Tags on Dynamic Groups

Hi Community, we deployed a VM-100 on Azure with a lab license to play around with PAN-OS and to test some azure designs. We noticed, when creating a dynamic address group, the add section doesn't show any tags - but tags are existent are used on policies and objects. Even when writing the tag-filter manually, the address group won't show any ...

Schoen by L0 Member
  • 2439 Views
  • 2 replies
  • 0 Likes

Resolved! USER-ID policies + FULL azure ad

Hello everyone , I'm having a problem that I can't solve. I'll explain the context.I am in full AZURE AD.My computers are enrolled via INTUNE I would like to be able to set up user-based firewall rules.I set up the "cloud identity engine" (linked to azure ad), I can see my groups and my users in the palo alto.When I create a firewall rule and I ...

LCutman by L1 Bithead
  • 7731 Views
  • 8 replies
  • 0 Likes

Does the firewallnew-vpc-v3.0.template only create BYOL vm series instances ?

I am trying to setup a Security VPC in AWS using CloudFormation template "firewallnew-vpc-v3.0.template". I wanted to set up a Security VPC with auto-scaling group attached FW. As I read thru the doc, One pre-requisite before launching the template states that - Add the authcode for your BYOL licenses to this file( the authcodes file), Do...

KimSNG by L0 Member
  • 1086 Views
  • 0 replies
  • 0 Likes

SAML SSO with Azure AD Authentication

We have configured SAML SSO for Palo Alto VM Series on Azure with Azure AD authentication but somehow the SAML SSO configuration is not working. Please find the details below: 1. Our Palo Alto NGFW VM is hosted on Azure. 2. We have created an Palo Alto Global Protect enterprise app on azure and configured the SAML SSO on it. 3. We have importe...

Palo Alto active-active HA setup in MS Azure

Hello Team, Greetings, Does azure deployment support Palo Alto in active-active HA setup? documents in PA end refers only active-passive setup. Also is Panorama really require to deployed it as Active-Active in azure ? Please share your thoughts to deployed it as Active-Active in azure? Thank You Brajesh

  • 704 Posts
  • 107 Subscriptions
Latest Comments
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks