This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3527 Views
  • 0 replies
  • 0 Likes

Ultimate Test Drive (UTD) - Get “Hands On” With the VM-Series and CN-Series on AWS

As we continue with our efforts to improve and enhance the public cloud UTDs, a new version of AWS UTD focused on VM-Series, CN-Series containerized NGFW and Prisma Cloud in AWS is now available. In the latest AWS UTD version, attendees will receive temporary credentials to access the AWS console and deploy a two-tiered environment with the late...

utd_aws_topology_v2_1.png
rsingh by L1 Bithead
  • 3591 Views
  • 0 replies
  • 0 Likes

Resolved! Using the ASG Cloudformation template. The licensing API doesn't work to allow lambda to connect.

After a lot of challenges using the template we have one problem left (hopefully) We downloaded the licensing api and successfully applied to panorama. When our lambda tries to connect using the following type string: https://[Panorama IP]/api/?type=op&key=[API Key[&cmd=%3Cshow%3E%3Csystem%3E%3Cinfo/%3E%3C/system%3E%3C/show%3E We receive...

Resolved! GCP VM-100 deployment issue

I am trying to programmatically create a compute instance running the VM series Next-Gen bundle 2 PAYG image. Can anyone tell me how this can be done? I understand that I need to load the image into cloud Storage which I use in my code so that the compute vm knows where to get the PAN-OS image. However, Iit is not clear to me how I can get the P...

Autoscaling in AWS version 3 (Gateway load balancer integration) - Decouple the Lambda scripts for autoscaling when not using the template

Hi everyone, We are looking to deploy the virtual firewalls in AWS in an autoscaling group and plan to build the AWS infrastructure (GLB, subnets, routing tables etc using terraform). The lambda scripts with the Cloud formation template are extensive (3500 lines of code) to monitor for firewalls being added/removed as part of a scaling event and...

IBM Cloud - can't bind a public IP to any other interface except eth0

We are trying to deploy a Palo VM series in the IBM Cloud. We found that we can only attach a public IP to the management interface (eth0) only. If we try to bind another public IP to say eth1, we get a message saying "public IP already attached to this vm". Can someone tell me if this is a license thing? or a limitation of the Palo VM for ...

sneffCO by L0 Member
  • 2225 Views
  • 0 replies
  • 0 Likes

Inbound traffic AWS

I'm deploying two Palo Alto firewalls in AWS per the reference architecture. I have deployed a dedicated security/appliance VPC using the Centralized design model. Outbound Internet is working for my spoke/application VPCs For inbound Internet access I'm using the Combined design, but I didn't use an ALB. My inbound traffic makes it to the Palos...

Broker VM on Hyper-V boots into grub rescue

Hi We wanted to deploy the downloaded Broker VM image (VHD file) to our Hyper-V infrastructure. When I boot the VM it immediately enters to grub rescue with the error: file '/boot/grub/i386-pc/normal.mod' not found Any ideas what the problem could be? Regards, Philipp

Philipp by L0 Member
  • 1917 Views
  • 0 replies
  • 0 Likes

Terminal Services Agent (TSAgent) for Azure Windows Virtual Desktop?

Has anyone tried, or knows the compatibility / support status of TSAgent on Microsoft's Windows 10 WVD capability in Azure? We're using it at the moment and are also looking to add user-id to the Palo Alto setup but wanted to check the status of support for the TSAgent into it as it is Microsoft-Azure-only Windows 10 multi-user setup (as oppos...

Firewall forwarding log to Private IP of Panorama --- failing - (AWS - VM series)

I have an Panorama managing Firewalls (in different region , subscription) -- latched via Public IP. The firewalls are set to forward logs to Panorama. Unfortunately , the Firewalls are forwarding logs to Private IP address (which is failing cause of no connectivity).How can I force log forwarding to use Panorama's public IP address ? I have alr...

Resolved! Connectivity issue during failover test

We have three VPC and Transit Gateway along with Gateway Load Balancer deployed. Two VM series deployed in two AZs and We have test VPC that spans in three AZs Gateway Both FW registered in Target Group of Load Balancer using IP address. When FW are deployed interface swap is not used. Routes are configured as network diagram. I can ping from t...

Palo-post-image.JPG

Panorama (on EC2) config export to S3 (AWS)

I am design an config backup architecture for all the devices managed by Panorama (in AWS Cloud EC2) , dumping the devices configurations to S3 bucket . Is there anything natively present on this VM-series to utilize for this ? ++@jmeurer , @BPry , @Warby -- Any pointers .

Resolved! How to use Serial Console / EC2 connect in AWS

Hi All , Workstation(Dynamic Public IP) - > Used to access Panorama mgmt Interface (mgmt interface is allowing only that workstation IP) The management interface of my Panorama is configured to allow only one particular IP . Now since that workstation has got new IP , we cannot connect to the Panorama VM in AWS any more. Is there a possibilit...

Resolved! accessing a new Palo Alto firewall in the AWS.

Team, it has been some days that we got our virtual Palo Alto in the AWS and were able to change password using the initial access and the ppk file. However, due to some issues we had to get another firewall provisioned and I am unable to recreate the steps we had done earlier. After the instance is provisioned we downloaded the .pem file, cover...

nson2139 by L3 Networker
  • 9422 Views
  • 5 replies
  • 0 Likes
  • 709 Posts
  • 107 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks