Amazon EC2 Maintenance: Instance scheduled for reboot "VM Series"

We recently got the following message from AWS regarding one of our VM Series firewalls:

"One or more of your Amazon EC2 instances are scheduled for maintenance. These instances are listed in the Affected Resources Tab. During this time, the instan

HA gateway pair in Azure?

In 2020, i worked on implementing a HA pair of VM300 gateways in Azure. At that time, use of API calls for node failover was problematic (several minutes for failover to complete), so the "load balancer sandwich" approach was taken.

Now, in 2024, h

GCP VPC Peering

Hi,

We are deploying PA VM in GCP (Common Firewall Deployment Architecture). Deployment Architecture is attached.

In Trust VPC we have configured Internal Load Balance (TCP), Created VPC Peering between Trust VPC & Web VPC.

From Trust VPC Instanc

High Availability on Public Cloud

Hi,

Does any one has implemented Palo Alto NGFW in HA on GCP.

If yes, than what will be the requirement for the same.

A/A HA on GCP

Does any one has deployed PA-VM in Active/Active HA.

AWS: Deployment in Sandwich

Hi Team,

We have deployed PA-VM in Sandwich architecture on AWS. During PA-VM deployment we swapped the management interface. In the application load balancer both PA-VM is showing Unhealthy.

How we can make PA-VM Healthy in Application Load Bala

VM series firewall on AWS | subnet planning

I'm planning to deploy VM series on AWS cloud, however I need clarification on VM subnet selection.

As per documentation, we have to attach 3 NIC in the VM , one each for Mgmt,WAN & LAN. My question is whether all NIC have to same AZ, e.g us-west-2a

How to setup VM on Laptop using Oracle VirtualBox Manager

How we setup VM on Laptop using Oracle VirtualBox Manager 

Only 1 ethernet which can use for Outside 

How to configure inside and management internet?

As wifi ethernet left

GWLB deployment challenge

Dear Team,

I need a suggestion before going for deployment on GWLB with PA series.

Requirement:

2 PA VM series in aws behind GWLB, say PA 01 and PA 02,

I want to configure IPsec with Site A but only with PA 01 and Tunnel with Site B only with

Understanding palo alto license - VM count and vCPU

Dear Team,

Our old employee has left the company and we have recieved below configuration from palo alto based on the requirements, Below is the spec.

Install 6 VM NGFWs with 8 vCPUs, Each virtual firewall will have
the following licenses: Advanc

PANOS 10.2.4 VPC endpoint to interface mapping issue

Just installed a new VM-Series Virtual NextGen Firewall w/ Threat Prevention - Bundle1 AWS.

Used the "request plugins vm_series aws gwlb associate .." command to link up some Gateway load balancer endpoints with the subinterfaces. 

When I used the sh

error: azure marketplace vm-series do not bootstrap

Template VM-Series Next-Generation Firewall from Palo Alto Networks (byol)

--------------------------------------------------------------------------------

bootstrap content

type=dhcp-client; hostname=eskfw81; vm-auth-key=xxxxxxx; panorama-server=x

Bootstrap fails when including an "all-contents" file (Azure)

I'm using the bootstrap module from here: PaloAltoNetworks/terraform-azurerm-vmseries-modules: Terraform Reusable Modules for VM-Series on Azure (github.com)

When deploying the bootstrap module in Azure with both bootstrap.xml and an "all-contents"