VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Showing results for 
Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Overlay routing for specific VPC

In AWS, I know how to enable overlay routing using the following commands: request plugins vm_series overlap-routing enable yes,

but can we have VPCs in a specific account handle overlay routing and VPCs handle overlay routing?

Is there only an option
...

Basic rule creation in VM-300 in GCP

Hi All,

 

We are starting our journey with Palo Alto in GCP. We have FW up and running with 3 interfaces (MGMT-NIC0, Untrusted-NIC1, Trusted-NIC2). 

We struggle to create a basic rule which allows i.e. PING from the host located in Untrusted zone to

...

Resolved! HA on AWS Using a Secondary IP

Hi,

 

Just checking if anyone has successfully deployed the latest HA mode "secondary-ip". Unfotunately the deployment guides can be described more as "guides" rather than detailed instructions. Furthermore they are fragmented so one has to scramble

...

ha_secondary_ip.drawio.png

Resolved! New VM asks for password using SSH

I;ve installed a new firewall using Bundle 1, I get this error with a new VM

 

One of them worked correctly, but after I killed it, I started to get these issues. Any idea what can be wrong?

The PEM key is the proper one, created when I launched the mac

...

nronica by L1 Bithead
  • 3198 Views
  • 3 replies
  • 0 Likes

Hitting IPsec Tunnel Limit on M-300

We are hitting a software limitation on the max number of IPsec Tunnels allowed for our VM-Series Next-Generation Firewall Bundle 2. This was purchased through AWS Marketplace and there is no clearly defined upgrade path for us to follow. The Palo Al

...

rpwags by L0 Member
  • 444 Views
  • 1 replies
  • 0 Likes

PA-VM Upgrade steps

PA-VM

VM-300

9.0.8 to 9.0.10

vm_series-1.0.11

 

Sorry for the (probably) simple question, but I've never done a Software Version upgrade on a Palo VM before.

 

Other than the usual steps to update, what other considerations do I need to take into account? 

...

HA A/P on AZURE IP floating

Hello,

i configured HA actif / passif on azure when the failovor occurs the floating IP still on the First Firewall, she not move for the seconf that he becomes Actif.

- all permiissions are gived 

-configuration is a same to the Knowledge base

-test

...

IMADHA by L0 Member
  • 556 Views
  • 2 replies
  • 0 Likes