This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3527 Views
  • 0 replies
  • 0 Likes

Resolved! Arm template azure-different zone

Has anybody successfully deployed VM's in Azure for palo alto? I have used the template, but no matter what I can't seem to put a fw in zone 2. Any help is appreciated. I've changed around the code, but can't get this fw into a zone: "variables": { "apiVersion": "2015-06-15", "imagePublisher": "paloaltonetworks", "...

WPhinney by L1 Bithead
  • 2159 Views
  • 1 replies
  • 0 Likes

HA A/P on AZURE IP floating

Hello, i configured HA actif / passif on azure when the failovor occurs the floating IP still on the First Firewall, she not move for the seconf that he becomes Actif. - all permiissions are gived -configuration is a same to the Knowledge base -test plugin is passed in logs i see that and i dont know what that's mean : 2022-06-29 17:41:54....

IMADHA by L0 Member
  • 4793 Views
  • 4 replies
  • 0 Likes

Resolved! Reducing the size of log collector disk from the minimum of 2TB.

Hello, We have configured Palo Alto Panorama ( VM series ) as a log collector and have 2TB disk attached which seems to be the minimum required storage. Now we are observing that it's very underutilized and hardly 200GB is being used. We want to save Azure Storage costs, so is there a solution to this, can we reduce the log collector size from t...

VM-Series on Azure - Packets received 0

Hello I would like to have your support. I deployed the following architecture in Azure. We have only 1 VM-Series at the moment. Based on the PA document for Azure, I created a Private subnet in vNet Hub zone (similar as the transit zone in the PA documentation). I created DSI and Project vNet with peering with Hub vNeet. We deployed an Azure ...

jeromecarrier_0-1680351707036.png
jeromecarrier_1-1680351816984.png
jeromecarrier_2-1680351837151.png

Palo Alto VM-series in Azure Vmware Solution

Hello, we have to deploy one Palo Alto NVA into the AVS Cloud of Microsoft. Unfortunately into the NSX-T environment of AVS is disabled the "service deployment" button so we cannot register the VM-Series firewall as a service. Is it possibile download and install the Palo Alto appliance as an .OVA file into the nsx-t environment ? Moreover ...

Which VM-Series deployment model within vSphere allows for firewall insertion into an existing network and will also require additional VLANs for each

I need right answers of these questions. Any help please Q1.Which VM-Series deployment model within vSphere allows for firewall insertion into an existing network and will also require additional VLANs for each tenant or application boundary? A.Layer 2 B.Layer 3 C.Layer 7 D.Virtual wire (vwire) Q2. Which VM-Series deployment model within...

Slow webpage Load times

Have two Firewalls setup in azure with LB on the trust interface side and no LB on the untrust side. I am experiencing slow web page load times. Sometimes it doesnt even load or loads parts of the page. Any ideas what could be causing this?

Resolved! Bootstrap VM-series AWS firewalls not showing in Panorama

I'm currently trying to bootstrap a number of VM series firewalls in AWS using Terraform. So far, it appears to be mostly successful. After provisioning the firewalls, I can see the S3 bucket being used is successfully detected from the AWS console. I get the following messages: INFO: Media detected, Starting media sanity check INFO: Bootstrap m...

MartinE by L2 Linker
  • 2906 Views
  • 1 replies
  • 0 Likes

Resolved! New VM asks for password using SSH

I;ve installed a new firewall using Bundle 1, I get this error with a new VM One of them worked correctly, but after I killed it, I started to get these issues. Any idea what can be wrong?The PEM key is the proper one, created when I launched the machine This seems to happen after I killed the first "bundle 1 machine" and it said trial expired, ...

nronica by L1 Bithead
  • 9966 Views
  • 7 replies
  • 0 Likes

Multiple IPSec tunnels on one public IP on AWS

I am working with company that is using VM-Series appliances in AWS for site to site VPNs. The VPNs need to be up all the time but have low throughput requirements. To host multiple VPNs on one VM-Series they currently have to setup a virtual network interface, each with a public IP, for each VPN. They are looking to scale this method in a more ...

Cyfroice by L0 Member
  • 3047 Views
  • 1 replies
  • 0 Likes

Resolved! API keys for Autoscale with GWLB deployment

We are attempting to deploy Cloud Formation Templates to create the autoscaling groups and firewalls but there are some steps around API keys that are confusing. From the pictures seen below, we are being asked for API keys for the panorama, and for the firewalls, and then the csp lisence key. My confusion points are as follows: 1. For the fir...

Verac22_1-1677589320646.png
Verac22_0-1677589313584.png
Verac22 by L2 Linker
  • 2530 Views
  • 1 replies
  • 0 Likes

Azure internal load balancer and VM firewalls not working

We are attempting to internal load balance a pair of VM firewalls in Azure. The firewalls work when traffic is sent directly to the firewalls. But when the Azure internal load balancer is added into the mix no traffic hits the firewall. I have searched all over the Palo web sites, the live community and Internet, but have not found instructions...

Joel_W by L1 Bithead
  • 7318 Views
  • 3 replies
  • 0 Likes
  • 709 Posts
  • 107 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks