This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3527 Views
  • 0 replies
  • 0 Likes

Cannot route any traffic to my internal VNETs unless the incoming traffic is source NATed to the internal inerfaces

Hello everyone, I am new to the Palo Azure environment. I have everything set up with 4 Palo VM instances between an external and internal load balancer. I am having an issue with NAT where traffic from the outside will not route to my internal VNETs unless it is first Source NATed to the internal interfaces of the firewalls. The source IP nee...

VMs cannot access the Internet

Hello, Hope I get some direction/solution here. VM (10.9.8.4) can ping trusted interface (10.8.130.4) of PA but with packet loss!!! However, tracert 8.8.8.8 does not show the trusted interface as next hop....request timed out. Cannot go to the Internet. All NSG set to allowed. PA has the most basic config at this stage with Allow All Policy. Tr...

AWS VM-series - untrust interface - eating packets

Hi Guys, I am working on inbound (from the internet) flow on the VM-series untrust interface directly. Set up -VM-series FW - 3 interface -- Mgmt , Untrust , Trust Client -> Internet GW -> EIP -> Firewall untrust interface - eth1/1 - > (SNAT - eth1/2 ; DNAT - Server private IP ) -> Server In the monitor log, I can see the SNAT &a...

Resolved! No traffic between VMs and PA in Azure

Hi there, We have deployed PA-VM in Azure and there are other 4 VMs within the same vnet. There are NSGs on each interface of PA (mgmt, trusted, untrusted) and also on the VMs. There is allowed-all rule in the PA with intrazone default rule logging enabled. Ping is also enabled. There is no switch or other device between the VMs and PA. Routing ...

Azure to Azure - IPSec

Scenario:Two separate companies, each has their own Azure infrastructure.Both companies have VNET’s with ExpressRoute back to on-premise MPLS.Both have Palo Alto VM Series firewalls in hub and spoke design on these Azure VNET’s.Peering is not an option due to route advertisement limitations when using ExpressRoute from two locations. Question:Is...

Alastair by L0 Member
  • 2069 Views
  • 0 replies
  • 0 Likes

Request for Refund

Hi, I selected the wrong bundle of Palo Alto Firewall by mistake and subscribed it for an year. I later on cancelled the subscription but still got charged for it. I didn't not initialize any machine so I don't have a CPU id to sign up for a support account. How should I submit a refund request? Any help will be highly appreciated. Thanks.

Migrate Esxi Panorama (Legacy Mode) to Aws Panorama (Panorama Mode) ..PA Gurus please help

Hi TeamBelow is my scenario- Current Production PanoramaHosted on ESXiMode- LegacyPAN OS- 8.1.17 Target PanoramaHosted on AWSMode - Panorama (Already license with different SN and have some location NGFW integrated with it)PAN OS - 10.0.6 My goal is to migrate from ESXi hosted Legacy Panorama to AWS hosted Panorama(Panorama mode). Following is t...

Not able to apply evaluation license to PA-VM in eve-ng running GCC

Hello EveryoneI have couple of PA-VM 50 evaluation licenses and I was successfully able to apply them in the PA-VMs in EVE-NG running on my VMware workstation. But due to hardware limitation I decided to build my eve-ng in Google Cloud Console (GCC) and so far the experience was great, I was able to run all my servers, routers, switches and even...

PAVM-GCC-1.jpg
PAVM-GCC-2.jpg
PAVM-GCC-3.jpg
PAVM-GCC-4.jpg

Failed plugin validation - Panorama 10.1.0

hello I am using the following versionsPanorama 10.1.0Azure plugin: 3.1.0VM series plugin: 1.0.11 I am configuring Panorama for VM series orchestration as per the document and video below:https://docs.paloaltonetworks.com/vm-series/10-1/vm-series-deployment/set-up-the-vm-series-firewall-on-azure/panorama-orchestrated-deployments-in-azure/orches...

ISP get slow speed

One of my Clients getting Low speed through the firewall when they Connect to Laptop They get the speed.They have a dual isp one is 20 mbps. and the second is 10 mbps.If there is an article please share the KB of palo altoPA-VM VM-50

Azure Public Load Balancer Public IP

Hello Everyone, I am pretty new to this Palo cloud transit VNet idea. So please excuse me if this is a dumb question 🙂 I have been reading the design guides from Palo and that leads to this question. As per the docs, we use a public load balancer to accept traffic from the internet and the firewall will destination NAT it to inside VMs. So the ...

Transit VNet.JPG
a-techie by L1 Bithead
  • 3364 Views
  • 1 replies
  • 0 Likes

CFT Template v3 GWLB templates - Firewall and Application stacks. Missing steps in the guide?

Hi All, I've deployed the firewall stack successfully and then deployed the application stack. The application stack launches but there are no public IP addresses associated with the application stack so it's difficult to test. I created a new instance in the same subnet and it has no outbound internet connection. Is anyone able to advise if I'v...

Resolved! Autoscaling in AWS version 3 (Gateway load balancer integration) - Firewalls never register in Panorama

Hi all, This is a really helpful group and I hope you can help with this challenge. 1. We deployed the ASG using Template 3.0 - all successful.2. Firewalls bootstrapped successfully.3. The lambda had a problem enabling the VM-Series element for cloudwatch (stated error 13 in use but) managed to make the change manually4. Everything else error fr...

Ultimate Test Drive (UTD) - Get “Hands On” With the VM-Series and CN-Series on Microsoft Azure

As we continue with our efforts to improve and enhance the public cloud UTDs, a new version of Azure UTD focused on VM-Series and CN-Series Containerized NGFW in Azure is now available. In the latest version, attendees receive temporary access to Microsoft Azure to run the lab. We have also added activities to give an overview of Prisma Cloud. S...

Screen Shot 2021-07-06 at 3.35.04 PM.png
rsingh by L1 Bithead
  • 4110 Views
  • 0 replies
  • 2 Likes
  • 709 Posts
  • 107 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks