This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3502 Views
  • 0 replies
  • 0 Likes

Express route bandwidth halved when using VM300 firewall

Hi All, we currently have a vm300 firewall acting as our security perimeter device in azure.I have setup the high availability using a standard microsoft internal load balancer for HA, but im finding that my bandwidth is halved when accessing azure VMs through the firewall.when i remove the firewalls from the environment, i get above 500Mbps whe...

tchark by L1 Bithead
  • 3091 Views
  • 1 replies
  • 0 Likes

AWS Load Balancer Sandwich Outbound Traffic

We have been trying to get the load balancer sandwich (https://github.com/PaloAltoNetworks/aws-alb-sandwich) working but have had little success. Has anyone been successful? First of all, we can't figure out how to send outbound traffic through the firewalls. An internal, outbound-facing load balancer should do the trick, but it seems a requirem...

Resolved! Load balancer sandwich and routing in Azure

I am trying to deploy a front end load balancer, 2 x VM-300 azure firewall in the middle and a back end load balancer.I am having trouble with configuring the UDR (routing) to allow access from the Azure subnets out to the internet and vice versa. The internal load balancer is doing HA load balancing for the firewalls and in the firewall logs I ...

tchark by L1 Bithead
  • 16175 Views
  • 5 replies
  • 0 Likes

How to do password recovery on VM 500 deployed in Azure

Can you help in explaining the procedure or point me to KB which illustrates about password recovery of VM 500 PA ?I was downgrading the firewall from 8.1.1 to 8.0.10 and booted the image with wrong config file. I am able to ssh firewall but maint mode username & password (serial #) is not working. How can I reset the password and bring VM ...

Prakhar by L2 Linker
  • 4136 Views
  • 0 replies
  • 0 Likes

VM-100 NFR license can not be applied to Azure PA-VM

Hi All, I creat a all new PA-VM on Azure with BYOL, after creat it, I use it's cpu-id and uuid to register a VM-100 NFR on our support portal and activaive licenses successfully. However when I try to click "Retrieve license keys from license server" on Azure PA-VM, I got error message "Failed to install licenses. Model incompatible: feature mod...

Resolved! Transit VPC error when running initializesubscriberaccount.json

Subscriber VPC setup – joining existing VPC as a subscriber. CFT fails with the below and rolls back.Invalid principal in policy: "AWS":"arn:aws:iam::19560164653:root" (Service: AmazonIdentityManagement; Status Code: 400; Error Code: MalformedPolicyDocument; Request ID: 2602a9d0-6f22-11e8-bff6-5bb0232cc1cd) Think it is coming from section start...

chrgre by L0 Member
  • 3343 Views
  • 1 replies
  • 0 Likes

Resolved! Add Virtual disk to Panorama on Azure

Hi everyone, I'm testing the option to migrate our current Panorama VM appliance to azure, I already spin up a new vm and it works just fine, I encountered an issue adding a new virtual drive to the vm, followed all the steps and running the "show system disk details" i get this message Name : sdcState : PresentSize : 2095104 MBStatus : Unava...

Panorama 8.1 in Azure

Has anyone had any luck deploying Panorama 8.1 beta in Azure ? I have tried a bunch of times getting it deployed in my environment and it seems to fail every time. I wonder if maybe this is partially due to the fact that I am deploying it in an environment that by default has Palo Altos controlling internet egress . Have not been able to figure ...

AWS Transit VPC GitHub Solution Question #2 - Access Denied

Has anyone encounted an access denied error for the cloudTrailLambda getting to the Transit VPC S3 bucket? [INFO] 2018-05-21T15:52:58.460Z 085dd5fc-5d0f-11e8-ba39-23960ea84bc5 Starting new HTTPS connection (1): maskednamed-transitvpccloudtrail-us-east-1-acctnumber.s3.amazonaws.com An error occurred (AccessDenied) when calling the GetObject oper...

Resolved! Deploying ARM template for Azure

Hi All,Anyone encountered issue while deploying arm template from this link: "https://github.com/PaloAltoNetworks/Azure-interface-options"? i cannot seems to add it to my existing resource group using all the options. The error i have is as below.

error.png
stan1 by L1 Bithead
  • 9661 Views
  • 11 replies
  • 0 Likes

Resolved! AWS ELB one to one relationship with backend

According to the documentation, if you don't have an ELB sandwich then there is a one to one relationship between the firewall and the back end server. I spoke to support and the answer was the fact that you can only have one ENI attached per subnet. My customer has an existing IAAS stack and wanted only 1 FW per AZ. But the proxy servers in the...

Screenshot 2018-04-12 14.29.35.png
PerryK by L2 Linker
  • 3215 Views
  • 2 replies
  • 0 Likes

Resolved! AWS Transit VPC GitHub Solution Question

Does any one know for the following solution (https://github.com/PaloAltoNetworks/aws-transit-vpc) if you are have a shared services account where the Transit devices are going if the initialize Transit CFN and the Subscriber CFN both have to be run in the same account?

AWS VM-FW, user integration with AD on AWS

Good day! How'd you doing guys? I've faced one situation about integrating user-id on AWS environment. VM firewall's running on the AWS and newly created server, which is AD also running on the AWS too.I've checked the both the VM firewall and the AD server's commnuication with ping check. However, whenever I've tried to integrate the AD users t...

VM-300 in Azure sizing and resiliency

Hi All, im trying to spec up a resilient HA solution for the VM-300 series PAYG bundle 1 option within azure, and just need the following clarified:-- if i were to purchase the VM-300 option 1 bundle (https://azuremarketplace.microsoft.com/en-us/marketplace/apps/paloaltonetworks.vmseries-ngfw?tab=PlansAndPrice) does this mean i also need to purc...

tchark by L1 Bithead
  • 6561 Views
  • 5 replies
  • 0 Likes
  • 704 Posts
  • 107 Subscriptions
Latest Comments
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks