This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3501 Views
  • 0 replies
  • 0 Likes

VM series log not detected in Azure Sentinel

Here’s the problem statement: 1] If Syslog UDP 514 is configured in PAN FW on-prem and vm-series, There were missing logs in AZ Sentinel, Incomplete logs is experienced and there were packets fragmentation.2] MS Sentinel support recommended to changed syslog transport UDP to TCP 514.3] If Syslog TCP 514 is configured in PAN FW, On-prem able to s...

VM100 Network Adapter down

Hi When i try to enable another interface eth 1/4 (network adapter 5) on the VM100 the interface is not coming up. On the firewall it says "ethernet1/4 19 ukn/ukn/down(autoneg) ba:db:ad:ba:db:04". On the same esxi host where the firewall is hosted I created a test server and configured IP address and vlan in the same range of firewall new ...

Resolved! East-west traffic within azure single Vnet

Regarding East-west traffic within azure single Vnet, in this Guide page 127 states "Azure networking does not require the use of source NAT on the firewall to enforcesymmetry if both directions of the flow pass through the same Azure internal loadbalancerfront-end IP and backend pool. The private subnets have UDRs directing East/West traffic to...

Sklearn on aws lambda

I want to use sklearn on AWS lambda. sklearn has dependencies on scipy(173MB) and numpy(75MB). The combined size of all these packages exceeds AWS Lambda disk space limit of 256 MB.How can I use AWS lambda to use sklearn?

Enable SSL Decryption Broker on VM-300

hi, I have followed the steps as per the doc to enable SSL Decryption Broker license on VM-300 device deployed on AWS. However, I do not see an option to enable the license (see attached). I have contacted the support and the case has been open from past 10 days but of no use. What is the best way to enable this free license?

Configure Site-to-Site IPsec VPN b/w Palo Alto Device hosted in Azure cloud and Cisco Router on Premise

Hello Everyone,I wish you all a good start to the week. Just wanted to know if someone here has already configured Site-to-Site IPsec VPN b/w Palo Alto Device hosted in Azure cloud and cisco router or cisco ASA firewall on-premise? Is there any proper documentation to do so?Or any existing thread? Your input would be much appreciated. Thank You

MDWaqas by L0 Member
  • 4733 Views
  • 3 replies
  • 0 Likes

AZURE - Routing loop, I guess

Hello,I am reaching out for help with bizarre issue I have encountered and looking for advice.I am running Palo Alto VM-300 version 9.0.14(issue was observed in 9.0.11 as well) in Azure cloud.VM interconnects subnets, Prod, Dev, Untrust, Outside etcI noticed that we were receiving alarms regarding some devices in prod not being reachable. I carr...

aigarsk by L0 Member
  • 2464 Views
  • 0 replies
  • 0 Likes

Resolved! Server Profile LDAP

Hi There, I am quite newbie to PA. I have deployed VM series firewall in Azure public cloud from Market place,But It appears to me in server profiles there is a lock symbol. Basically i try to configure LDAP for PAFW authentication. I had setup everything but its not working, Is that any license require? What that lock means.

Ramakrishnan_0-1643368460278.png

Disks assigned to Azure VM-300

Hello, We have a couple of VM-300 series firewalls in Azure which are using HDD disks. We have had a recommendation to change these VMs to standard SSDs disks to improve performance as part of a recent health check. Can anyone advise if this is worth doing and any issues we may come across in doing so? Thanks Ryan

Resolved! vm-series on azure - failing to start

Anyone have luck deploying a standard vm-series in Azure lately? Hitting the mgmt interface with a web browser will sometimes (most of the time it doesn't respond) display the following: "ATTENTION A critical error has been detected, preventing proper boot up of the device..." Have tried multiple times to get this to deploy on bundle 2 and keep ...

GCP VM-Series Bundle 1 from market place - No Traffic logs

I have deployed vm-series bundle-1 for POC purpose from market place. Created 3 VPCs one for mgmt one for untrust one for trust.In mgmt console created network interfaces pointing to newly created security-zones and using default virtual router. I want to monitor traffic going out from trust zone(which is a separate vpc/subnet and has a single v...

Rena_Melb_0-1642679482556.png
Rena_Melb_1-1642679655282.png

Recommended config for Globalprotect on Azure active-active LB sandwich architecture?

We are running two active-active VM-300s at Azure using the common firewall architecture reference doc (two Azure standard load balancer sandwich). Now looking to enable Globalprotect gateways and was wondering what best practice would be for external access - use a single address on external Azure load balancers and load balance to VM-300s with...

Resolved! VM-300 Product azure sizing

Have a couple of VM-300 series VMs in azure that are running at an incorrect sizing. Looking at resizing but was wondering if since the VM-300 Series only supports 4VCPU are the additional VCPUs not used? Typically per documentation VM-300 Series are sized at a D3 in AzureWe have firewalls in the VM-300 series sized at a D5v2 so way more resour...

  • 704 Posts
  • 107 Subscriptions
Latest Comments
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks