Internet reachability

Hi ,

Due my self training on Palo Alto VM , I have face some issue where I'm not able to ping internet , but able to ping next host on same subset ( my pc ).

Network connective :

VMnet1: inside interface

VMnet2 : DMZ interface

Bridged : outside interface

V

No metrics in cloudwatch

Hello,

I followed this guide https://docs.paloaltonetworks.com/vm-series/9-0/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/deploy-the-vm-series-firewall-on-aws/enable-cloudwatch-monitoring-on-the-vm-series-firewall.html

for enabling the vm-

Traffic logs missing on Palo Alto- Azure VM(PAN OS 8.1.9)

Today we had an issue when we could not login to our Palo Alto. Reboot from Azure portal fixed the issue. When logged back to Palo and checked traffic logs, found that traffic logs are missing before the VM was rebooted for almost 24 hours. There is

PA with ELB and ILB in Azure

We have the below setup:

internet->ELB(public ip)->VM Series(2)-> ILB->Web Servers

Where the 2 VM series Firewall in backend pool of both ELB and ILB, the issue here is the Health probe IP for both ELB and ILB is 168.63.129.16 so health probes always

AWS ALB/ALB Sandwich - Active/Active vm-series (9.0.5)

External ALB -> VM-series 300 -> Internal ALB -> server (listening on tcp/15000)

Having issues routing from external ALB to the server over port 15000 ?

Added listener port http:15000 on the ALB and forwarded it to the target group containing the fire

AWS ALB/ALB Sandwich - issue with target group showing firewalls unhealthy (http - 80)

Configuration in AWS
External ALB -> VM-series 300 (in 2 AZ) -> Internal ALB ->webserver
The target group of the external ALB shows unhealthy for port http/80 

External NLB ->VM-series 300  (in 2 AZ)-> Internal NLB -> webserver
The target group of the e

Unable to get ssh key to work

Trying to spin up a firewall in the GCP environment but unable to get ssh key to work.  Tried different keys including puttygen generated key.    Also tried project metadata and instance metadata

Ex:

resource "google_compute_instance" "fw-region" {
coun

Palo Azure extra Interfaces not picking up IP from DHCP

Just deployed Azure Bundle 2 VM with 4 interfaces, 

I can see all 4 interfaces in the Palo

Interface 1/3 and 1/4 no matter what will pick up an IP address via DHCP

total configured logical interfaces: 4

name                id    vsys zone             f

VM Series in AWS not reading boot config from bucket

Hello,

I followed the instructions here: https://docs.paloaltonetworks.com/vm-series/8-1/vm-series-deployment/bootstrap-the-vm-series-firewall/bootstrap-the-vm-series-firewall-in-aws

I only have config/bootstrap.xml, config/init-cfg.txt and the other t

Basic AWS Setup

So I'm having troubles with a deployment ... seems like it should be super straightforward, but I'm just not getting any traffic through the Palo.

I've got 3 subnet, private, public, mgmt

I swapped the mgmt and eth1/1 interface so the EIP is applied to

Panorama VM Series Cloud Plugin UserID

Hi Community,

I ran over this piece of information "The plugin enables publishing custom metrics to cloud monitoring services (such as AWS CloudWatch), bootstrapping, configuring user credential provisioning information from public cloud environments

double vs single NATing in gcp for outbound internet gateway

We're attempting to deploy a VM series in GCP to act as an outbound internet gateway. All documentation we've been able to find shows the Palos NATing the original source IP to another private IP in a 'public dmz' subnet. GCP will then NAT this new p