This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3526 Views
  • 0 replies
  • 0 Likes

site to site IPsec tunnel between PA and AWS

HI members Has anyone had an experienced setting up a site to site tunnel between AWS and PA?I have set up the IPSEC tunnel on my PA (we did use the parameters as per aws downloaded file). The issue is if I use the server's public IP (actual source) on AWS end as in proxy ID instead of private IP, the other end can't access my server. In our en...

R_Sharma by L2 Linker
  • 5915 Views
  • 5 replies
  • 0 Likes

Resolved! AWS Transit VPC -VPN with PA VM-300

Hi, Did anyone built Transit VPC Deployment using Palo Alto VM-300 series firewall? We are planning to provision 1XVM-300 firewall appliance in each AZ of transit VPC. However I am concerned about number of VPN tunnels each device can handle? Are there any VPN limitatons with PA VM-300 running on AWS ? Thanks,

Networking-UDRs-in-Azure-Inserting-the-VM-Series-into-an-Azure

Hi Team, I am new to Paloalto and have some queries with regards to deployment of Paloalto on VM series Firewall on Azure. https://www.paloaltonetworks.com/documentation/71/virtualization/virtualization/set-up-the-vm-series-firewall-in-azure/about-the-vm-series-firewall-in-azure Upon search we found > The VM-Series firewall in Azure does not ...

sougata by L1 Bithead
  • 10756 Views
  • 11 replies
  • 0 Likes

Express route bandwidth halved when using VM300 firewall

Hi All, we currently have a vm300 firewall acting as our security perimeter device in azure.I have setup the high availability using a standard microsoft internal load balancer for HA, but im finding that my bandwidth is halved when accessing azure VMs through the firewall.when i remove the firewalls from the environment, i get above 500Mbps whe...

tchark by L1 Bithead
  • 3119 Views
  • 1 replies
  • 0 Likes

AWS Load Balancer Sandwich Outbound Traffic

We have been trying to get the load balancer sandwich (https://github.com/PaloAltoNetworks/aws-alb-sandwich) working but have had little success. Has anyone been successful? First of all, we can't figure out how to send outbound traffic through the firewalls. An internal, outbound-facing load balancer should do the trick, but it seems a requirem...

Resolved! Load balancer sandwich and routing in Azure

I am trying to deploy a front end load balancer, 2 x VM-300 azure firewall in the middle and a back end load balancer.I am having trouble with configuring the UDR (routing) to allow access from the Azure subnets out to the internet and vice versa. The internal load balancer is doing HA load balancing for the firewalls and in the firewall logs I ...

tchark by L1 Bithead
  • 16308 Views
  • 5 replies
  • 0 Likes

How to do password recovery on VM 500 deployed in Azure

Can you help in explaining the procedure or point me to KB which illustrates about password recovery of VM 500 PA ?I was downgrading the firewall from 8.1.1 to 8.0.10 and booted the image with wrong config file. I am able to ssh firewall but maint mode username & password (serial #) is not working. How can I reset the password and bring VM ...

Prakhar by L2 Linker
  • 4167 Views
  • 0 replies
  • 0 Likes

VM-100 NFR license can not be applied to Azure PA-VM

Hi All, I creat a all new PA-VM on Azure with BYOL, after creat it, I use it's cpu-id and uuid to register a VM-100 NFR on our support portal and activaive licenses successfully. However when I try to click "Retrieve license keys from license server" on Azure PA-VM, I got error message "Failed to install licenses. Model incompatible: feature mod...

Resolved! Transit VPC error when running initializesubscriberaccount.json

Subscriber VPC setup – joining existing VPC as a subscriber. CFT fails with the below and rolls back.Invalid principal in policy: "AWS":"arn:aws:iam::19560164653:root" (Service: AmazonIdentityManagement; Status Code: 400; Error Code: MalformedPolicyDocument; Request ID: 2602a9d0-6f22-11e8-bff6-5bb0232cc1cd) Think it is coming from section start...

chrgre by L0 Member
  • 3384 Views
  • 1 replies
  • 0 Likes

Resolved! Add Virtual disk to Panorama on Azure

Hi everyone, I'm testing the option to migrate our current Panorama VM appliance to azure, I already spin up a new vm and it works just fine, I encountered an issue adding a new virtual drive to the vm, followed all the steps and running the "show system disk details" i get this message Name : sdcState : PresentSize : 2095104 MBStatus : Unava...

Panorama 8.1 in Azure

Has anyone had any luck deploying Panorama 8.1 beta in Azure ? I have tried a bunch of times getting it deployed in my environment and it seems to fail every time. I wonder if maybe this is partially due to the fact that I am deploying it in an environment that by default has Palo Altos controlling internet egress . Have not been able to figure ...

AWS Transit VPC GitHub Solution Question #2 - Access Denied

Has anyone encounted an access denied error for the cloudTrailLambda getting to the Transit VPC S3 bucket? [INFO] 2018-05-21T15:52:58.460Z 085dd5fc-5d0f-11e8-ba39-23960ea84bc5 Starting new HTTPS connection (1): maskednamed-transitvpccloudtrail-us-east-1-acctnumber.s3.amazonaws.com An error occurred (AccessDenied) when calling the GetObject oper...

Resolved! Deploying ARM template for Azure

Hi All,Anyone encountered issue while deploying arm template from this link: "https://github.com/PaloAltoNetworks/Azure-interface-options"? i cannot seems to add it to my existing resource group using all the options. The error i have is as below.

error.png
stan1 by L1 Bithead
  • 9760 Views
  • 11 replies
  • 0 Likes
  • 709 Posts
  • 107 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks