This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3500 Views
  • 0 replies
  • 0 Likes

Resolved! Auto Scale Group - VM Series

For my EC2 instances (App Server), I just created Launch Template/ASG. Can I do the same thing with the VM-Series FWs? Capture an AMI, create a Launch Template and ASG? Here is my situation, I have two firewalls that I manually built under an NLB. I would like to replace those with an ASG. Any advice would be super appreciated. Thank you,

AWS - Availability Zones - Palo Alto Location

Hi, I am looking at deploying the VM-Series into AWS to replace an existing deployment of Sophos UTMs. But can someone help tell me if I am going mad, or have found a limiation. The VM-Series would be used for egress traffic only, and we dont have tight SLA's so ideally a single VM FW will sort us out. If I deploy a single VM-Series into say Ava...

Resolved! Autoscale (manually created VM-SERIES) on AWS

two firewalls behind an NLB. what approach would you take to spin up additional firewalls if a certain threshold is hit (what threshold would you trigger on)? i've looked at the templates provided by palo alto but this would be adding additional firewalls in already established VPCs. also use panorama

Resolved! VM-Series to TG for ECMP VPN on AWS

I'm looking at taking advantage of ECMP VPN to attach VM-SERIES to the Transit Gateway. I would like to use tunnel interfaces for this and would like egress/ingress traffic to go through the VM-SERIES appliances. Can somone that has implemented this design provide some feedback, steps and things to keep in mind? Thank you,

Resolved! Ansible -Setup

Hello, I am struggling with the basic setup.I can use curl to verify I have a user and password that works, but curl can ignore the certificate.Is there a way for ansible-pan to ignore it as well? Thanks for your help!

Configure Global protect

I have setup Auto Scale VM-Series Firewalls with the Amazon ELB Service and backend server. I need to configure global protect from palo alto web viewI follow this docs and also I have AWS Elastic IP but I am confused with how I can configure AWS EIP.Could any one help me to configure global protect VPN

Service Route Configuration - DNS resolution seems to fail

Hi, I'm currently staging a PAN-VM (8.1.3 KVM) and have hit an issue. The setup: I've configured the interfaces, zones, routing (static default route) etc. correctly.I've modified the service router configuration to use the Internet facing dataplane interface IP (i.e. customized and not use management interface). That is I allow DNS, NTP, Palo ...

Trust interface on vm not coming up in AWS

Im doing some testing in AWS with a DEV server on the inside of my vm 100.. I have E1/2 configured as gateway interface with a ENI private IP address we created in AWS. However, after troubleshooting almost the entire day I cant get it to come up. Im using 9.0.1 so this could be a bug but Im not sure. Has anybody every encountered this?

Licensing Issues with PAYG Bundle 2 on AWS

I have just setup the PAYG AWS Bundle 2 and am having issues with enabling the URL filtering etc. subscriptions.I'm unsure if it could be to do with the fact that I am still in the Free Trial, but I would assume these subscriptions would be present in this state?Below I have attached screenshots of what the current Licensing and Version config. ...

Screenshot 2019-06-07 at 14.18.08.png
Screenshot 2019-06-07 at 14.18.49.png
edd_mann by L0 Member
  • 11441 Views
  • 6 replies
  • 0 Likes

Setup IPSEC Tunnels from Active/Standby pair to Active/Active Pair in AWS

So, we are in the process of creating a prescence in AWS. We are planning on using a pair of VM-300 series firewalls (jn Active/Active) in a Transit VPC. Our on prem firewall pair (in Active/Standby mode) will connect to the Transit VPC via IPSEC tunnels. The first tunnel will be over a DirectConnect (DX) connection, and the second tunnel will r...

Fr4nk4 by L2 Linker
  • 6513 Views
  • 1 replies
  • 0 Likes

Licensing quesion / issue with CSP

We have a couple of PA3050 devices in situ and are planning to migrate many of our workloads into Azure. We would like to deploy a VM-300 in Azure and keep costs as low as possible with the ability to flex up/down. The PAYG model seems the option for this but we have been told this is not available to us as we are using a CSP. Are there any o...

  • 704 Posts
  • 107 Subscriptions
Latest Comments
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks