Discussions
Resolved! Second Public IP for VM-300 hosted in Azure
Hi everyone,
our PAN NIC in Azure looks like this Primary IP: 192.168.1.4/1.1.1.1 Secondary IP: 192.168.1.8/1.1.1.2.
On the Vm-300 interface eth1/1 (outside) recieves 192.168.1.4 via DHCP which is working fine. But how do I map the secondary IP?
In t
...Resolved! Downgrading from PANOS-9.1.0-h3 to 9.0.4 -- access fails, logon
After Downgrading from PANOS-9.1.0-h3 to PANOS 9.0, in Azure, VM100 fails to accept logon. I've tried twice. Once to base 9.0 and another to 9.0.4 with base downloaded. Is this downgrade path not supported?
Firewalls not attaching to panorama
Hello,
After bootstrapping VM series firewall, instance is not available in panorama, bootstrap seems successful, how to troubleshoot more
Is there a particular log i can check where its failing
Version is 9.0.5xfr
Thanks
Venkat
Ultimate Test Drive (UTD) - Get “Hands On” With the VM-Series on Microsoft Azure
As we continue with our efforts to improve and enhance the public cloud UTDs, a new version of Azure UTD focused on VM-Series firewall in Azure is now available. In the latest version, attendees receive temporary access to Microsoft Azure to run the
...AWS Transit Gateway
Hello,
Is there planned AWS Transit Gateway integration? There is mention but no detail in this video:
https://www.youtube.com/watch?v=6fhwoAwYrug
Other than operational ease, the Transit Gateway advantages appear limited. Traffic between VPCs is not
...Resolved! Palo Alto Azure - second trust interface routing issue
Hello to all,
I am doing a lab in Azure with a VM-300. I have the three interfaces - trust, management, and untrust. I have this model working to protect 2 additional subnets that have VMs, I achieved east-west and north south protection, including
...
PA-VM GNS3 routing
Hello,
I've configured up two interfaces on my PA-VM (management 10.0.64.3 with VMnet0 - 10.0.64.0/24 and data with VMnet1 - 10.0.0.0/16). Management is directly connected to PC with Windows and Ethernet 1/1 to FastEthernet0/0 on my switch. I've confi
...
Resolved! VM interfaces vmxnet3
Hello,
I'm using PA-VM with PAN-OS 9.0.4 on GNS3 2.2.5. I've configured four VMnets (0 - management, 1 - LAN_IT, 2 - LAN_USERS and 3 - SERVERS). I've access to management on IP address 10.0.64.3 on Eth0 port. I can't configure traffic ports e.g. e1/1,
...
Private, Public, Hybrid?
Has your company gone fully cloud native? Are you just starting out? Somewhere in between? We're interested to learn what blockers you've experienced, and what sort of solutions you've found in your journey—from a security side or dev side.
More info on HA in Azure?
The documentation seems a bit light on detail. I have created a Service Principle in Azure and entered the data into my two firewalls as per these documents:
https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-the-vm-series-fir
...Resolved! Default route is not distributed to subscriber VPC - Bgp/Dynamic routing
Hello, currently doing a POC for Transit VPC setup in AWS with VM-Series firewalls and noticed that default route is not propagated on subscriber VPC routing tables. All the other subnets are propagating. Followed https://www.paloaltonetworks.com/re
...Security Policy in VM-Series - Container and DAGs
In AWS environment we have containers that do the job and then terminate. How is is possible to do a security policy on containers? DAG is not detecting the IP Address used by container to egress out to internet.
Secondly, how a single IP Address can
...Resolved! Azure bootstrap - indirect internet access
Hello,
We are in the process of bootstrapping our ELA-licensed VM-series firewalls for use in Azure. The firewalls will not have internet access once spun up, so I am not able to simply load the auth code in the license folder. We will be leveraging
...Dynamic Updates and Device Registration Failing in GCP. HELP!!!
Ok Gurus, I got a need for some help and visibility on this one... please...
My FWs are virtualized within a open source (KVM) environment, that was placed into GCP back in June 2019.
Somewhere along this week, when I first noticed that I am not ge
...
- PavelK on: Hitting IPsec Tunnel Limit on M-300
- rpegada on: Azure ALB sandwich with vm-series
- IMADHA on: HA A/P on AZURE IP floating
-
Astardzhiev
on:
Azure Deployment instructions don't work - web interface won't load
-
Astardzhiev
on:
GWLB Sub-Interface
-
Astardzhiev
on:
Azure refarch template broken
- Centogene on: Issues with Overlay Routing and AWS Gateway Load Balancer
- estoltz on: Moving public IP from VM to Palo Alto in Azure
-
Astardzhiev
on:
New interface at Palo-alto VM in AWS EC2 instance not turning UP
- JimMcGrady on: Palo HA in Azure - traffic flow
