This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3522 Views
  • 0 replies
  • 0 Likes

Resolved! vm-series on azure - failing to start

Anyone have luck deploying a standard vm-series in Azure lately? Hitting the mgmt interface with a web browser will sometimes (most of the time it doesn't respond) display the following: "ATTENTION A critical error has been detected, preventing proper boot up of the device..." Have tried multiple times to get this to deploy on bundle 2 and keep ...

GCP VM-Series Bundle 1 from market place - No Traffic logs

I have deployed vm-series bundle-1 for POC purpose from market place. Created 3 VPCs one for mgmt one for untrust one for trust.In mgmt console created network interfaces pointing to newly created security-zones and using default virtual router. I want to monitor traffic going out from trust zone(which is a separate vpc/subnet and has a single v...

Rena_Melb_0-1642679482556.png
Rena_Melb_1-1642679655282.png

Recommended config for Globalprotect on Azure active-active LB sandwich architecture?

We are running two active-active VM-300s at Azure using the common firewall architecture reference doc (two Azure standard load balancer sandwich). Now looking to enable Globalprotect gateways and was wondering what best practice would be for external access - use a single address on external Azure load balancers and load balance to VM-300s with...

Resolved! VM-300 Product azure sizing

Have a couple of VM-300 series VMs in azure that are running at an incorrect sizing. Looking at resizing but was wondering if since the VM-300 Series only supports 4VCPU are the additional VCPUs not used? Typically per documentation VM-300 Series are sized at a D3 in AzureWe have firewalls in the VM-300 series sized at a D5v2 so way more resour...

Resolved! HA Missing Operational Commands Tab

Hi, I have setup 2 VM series FW in Azure in HA, however in the HA section there's no Operational Commands tab to go in and issue a suspend so it can failover to the secondary FW. I know in CLI you can put in a command to do this, but I'm interested to see if there is a fix for this.I'm running PAN-OS 10.0.6. Thanks

Dynam0 by L1 Bithead
  • 4934 Views
  • 2 replies
  • 0 Likes

FIPS Mode in GCP only available with PAYG Bundle 1??

Does anybody know if VM series Firewalls in GCP that are put into FIPS Mode actually downgrades the VM Bundle from PAYG Bundle 2 to Bundle 1? I had one firewall that was deployed with Bundle 2 and it had all the licenses. After I booted that firewall into maintenance mode, set to FIPS mode and rebooted, it only pulls down PA-VM, Premium, and Thr...

Frankamato_0-1641430029490.png
Frankamato_1-1641430049141.png

EVE-NG PA booting issue

Hi all, I have a eve-ng laptop that i'm planning to use for practice. I have installed the KVM file and activated it as well as added it to the eve-ng lab. However, when i start the device. I get the error message "No bootable Device". This device is currently configured to use PA8.0.5 in the EVE-NG environment. I have Attached a screenshot of ...

Jumbo Frames

Hi,I need small information on Jumbo Frames. If I disable the Jumbo Frames in PA-VM (VM-300) in device --- Setup --- session, will it be there any traffic impact or will firewall reboot.?please suggest me on this,.Thank you,

Azure HA Failover not working

Hello, We have a pair of VM300 PAs in Azure set up in Active-Passive. They are running 9.0.7 code with VM Series plug in 1.0.8. There was an issue in Azure on 19/10/20 which caused a failover and recovery (we use pre-emption). Post this issue the PAs were up and running but not passing traffic. we found that the secondary IP addresses (i.e. ...

Resolved! Azure multiple VM-series with UDR and Load balancers

Hello, At this moment I am doing a PoC for a client in Azure with two VM-300 in the so called "Sandwich" mode. So for traffic coming from the internet I have the following path: ELB > VM-300 (x2) > ILB > Webserver (x2). Both VM-300 and Webservers are both in a seperate availabilty set. I managed to load balance the traffic from the int...

Knipsel.PNG

AWS interface limits

Is the AWS VM limited to only 3 interfaces or can we add 3 more? I was reading there may be limitations associated with machine type but wanted to be sure before we went down the path of changing that.

Resolved! Azure Palo Alto VM to campus network via ExpressRoute

Quick question for the community. I have setup and configured the Palo Alto VM series in Azure. Along with the management interface, the VM has “trust” and “untrust” interfaces. I have basically copied the rules over from our office Palo Alto devices, and my test VM is working great through the Palo Alto VM. However, I’m having a problem that I ...

Resolved! NGFW on Azure cannot be deployed successful

Hi all, I got a weird situation when I deploy the PA NGFW on Azure, could you please give me some suggestions for resloving this weird situation? After deployment, the VM will be restared and restared by itself with unknown reason, I try to connect to Serial Console, the final screen is in Maintenance mode. I check the Activity Log, but no any v...

  • 709 Posts
  • 107 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks