NGFW with azure gateway load balancer

If I have an Azure Gateway Load Balancer set up with my NGFWs (Interface eth1/1), do I have to use a separate interface for traffic originating inside Azure to point to? I would assume yes since GWLB technically uses vxlan and so I'd need a separate

How to retain Public IP Address Assigned to a host on VMSeries Firewall on Azure

Hello Community,

I want to deploy Palo Alto VM Series firewall Infront of some workloads already existing on my Azure tenant and still ensure that services calling the workloads use the existing public IP Addresses assigned to these workloads when

Upgrade from VM50 to VM 100 failure

Upgrading a VM-series firewall requires an API key to be configured on the firewall. Please enable this configuration and try again.

May i know what problem? thanks

VM-Series configuration sync in aws GWLB architecture

Hi,

Can someone help me to know how I can synchronise VM-Series configurations in aws Gateway Load Balancer architecture with two VM-Series instances? 

Thanks.

How to deploy Panorama on Azure?

Hello,

How does one deploy a single panorama in the Azure Cloud ?

1. Do you use the Azure marketplace?

2. Do we use any Github template?

Can I restore backup from a Panorama running on higher Cpu/Memory to this newly deployed Panorama which will have

2 Palo Alto VM-Serie for IPsec VPN

Hello

We deploy 2 VM-Series on Azure as recommanded by PA. These 2 FW manage Inbound/Outbound traffic and between our internals zones. A public load balancer have been configured. We need to connect our Azure infrastructure with our local datacente

Case Number - 02351211

I whitelisted a site and they are able to access it but not when they connect to VPN. Looking for assistance with this. 

AWS, gw loadbalancer and geneve

hi,

I have set up two palos in different az's in AWS. I have utilized the gw lodbalancers and done the bootstrapping so to get them "healty" etc.  The soultion is working fine!!

But I am having a very hard time understanding how to get the panorama

Videos for AWS GWLB and Azure GWLB integration with Palo Alto

As I see many people doing  AWS GWLB or Azure GWLB integration with Palo Alto there are good Live Community videos for that in Youtube:

https://www.youtube.com/watch?v=c28ZwlhCIWE

https://www.youtube.com/watch?v=RFfQbSDSxlE

AWS IPSec tunnel active/active HA with BGP

Looking for some help here.  I have an ongoing case with support concerning AWS tunnel issues.  My production FWs are active/active but not in sync.  Just always been that way, it's the way I inherited it.  I have 4 tunnels to AWS (2 on each FW) BGP

Packets loss but no drops - VM Series, AWS, GWLB

i have a server sending traffic on 443 through GWLB to my Palos and out to the internet

The logs all say 'aged out'

Packet capture reveals the SYN arriving wearing GENEVE, being de-encapsulated, source NATed and forwarded out Untrust

The SYN/AC

Palo Alto and Azure Application Gateway

Hello

I'm deploying infrastructure on Azure with Palo Alto firewall. We will host web application (appli1.company.com & appli2.company.com) on a vnet dmz. My design is based on Hub/Spoke configuration and I configured an vNet Peering between my DMZ

Unable to change subnet for Cloud NGFW

I cannot change the subnet for two Cloud NGFW endpoints on the Portal. The admin portal says I am not authorized even though I am a tenant admin.

I am trying to change the subnet because the subnets the firewalls are configured to no longer exists a