This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3526 Views
  • 0 replies
  • 0 Likes

AWS / Multiple subnets across multiple AZs - Multiple NICS?

Very new to VM-300 and PA, deploying it in AWS with 2 availability zones. We'd like to have 3 private subnets in each AZ - DMZ, application, and data, as well as a public subnet for the EIP interface. Ideally all traffic between subnets would flow through the VM-300, but this doesn't seem possible to us without multiple NICs, one per subnet. I...

spetty01 by L0 Member
  • 4449 Views
  • 3 replies
  • 0 Likes

AWS Auto Scaling Template version 2.0

I am trying to go through the Auto-Scaling Template for VM on AWS 2.0. I have a few question around the template. Is there a reason that we are using a NAT gateway? Are we going to support a EIP on the Management interface so that we don't need to deploy a bastion host (jump box). Are we going to support multiple more than two AZ's in future r...

svacca by L1 Bithead
  • 3244 Views
  • 1 replies
  • 0 Likes

Palo Alto VM 300 behind AWS ELB with public HTTPS traffic forwarded to it

Hi,my existing environment have a nearly 20 AWS load balancers which are public facing, now I want to implement Palo Alto VM 300 behind this ELBs, and monitor and trasalate the traffic to the backend instances. I've tested this requirement with one load balacners, however when I'm adding my second load balancer, the port trasalation is not work...

NithinN by L0 Member
  • 4677 Views
  • 2 replies
  • 0 Likes

SMB Slowness via PA firewall in Azure Cloud

Hi team,We have deployed PA VM300 series firewall in Azure US West and Azure US East. When a server from US West tries to copy data of 500 Mb to US East server the maximum transfer rate is between 200 - 500 Kbps. When the same file is copied bypassing the firewall, the file transfer rate is 50~60 Mbps.Tried configuring MSS settings to the interf...

OMS Dashabord

Has anyone tried to connect multiple Palo Alto devices to Azure OMS for the purpose of using Log Analytics? We currently have a server configured to forward Palo Alto syslog files to OMS, but from what I can see there doesn't appear to be any OMS solutions that deal with the kind of data that is coming from the Palo Alto devices. What we are loo...

VM Series in AWS

Can anyone point me to AWS configuration information. I currently have my prem fw setup in a ptp vpn using AWS VPN gateway. Now i want ot setup a vm-series in AWS and i have a few questions.

GFN182 by L2 Linker
  • 3065 Views
  • 2 replies
  • 0 Likes

AWS Tags in Panorama

Is it possible to somehow populate the VM Information Sources information (which can collect AWS tags or VMware information) in Panorama? I am specifically looking to use AWS Tag information in a Dynamic Group(s) within Panorama. Doing this within the firewall locally appears to work fine, just not within Panorama.

Resolved! AWS ELB behind firewall with public HTTPS traffic forwarded to it

I have setup a classic internal ELB with traffic forwarded to 2 AD FS severs. Internally, by creating a CNAME entry with the FQDN for the ELB, the load balancer forwards to each of the AD FS servers as it should. I have the necessary NAT and security policies as well as policy based forwarding rule as this is the 2nd public interface with forwar...

Resolved! Update Azure VM agent on VM-Series

Hi, Does anyone know the command to run via SSH to update the linux Azure VM agent? None of the ones listed in URL below appear to work: https://docs.microsoft.com/en-us/azure/virtual-machines/linux/update-agent Thanks,Jag

Resolved! How to configure "interface-management-profile" using Ansible.

Hello Paloalto, Do we have any playbooks to configure the "interface-management-profile" for the trust and untrust network post deploying Paloalto on AWS.... I do see that there is a CLI to do it but i'm more intrested to understand if there is a playbook to achieve the same... https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-C...

Anish123 by L1 Bithead
  • 5581 Views
  • 3 replies
  • 0 Likes

NAT commit failure in AWS

Hi , We have three PA firewall ASG's running in our environment. Everything was working fine since 23rd of August. On 23rd of August two of the firewalls have gone down and as a part of predefined auto scaling policy, two new PA ASG/firewalls spun up with issues. The bootstrap process for both of them have issues as they have not been updated wi...

Multiple public IP configuration on AWS

I require the same ports to be forwarded to different servers in our Amazon VPC. I've set up 2 interfaces each with their own EIPs and attached them to the VM-300. Traffic flows properly to the first server and the IPsec tunnels work through the first interface. Setting up the 2nd public interface with the same settings as the first and creating...

PA in Azure VM

Is anyone finding that the min VM required to run PA in Azure is expensive? It does not appear that it lets you size down teh VM ? Any recommendations thanks

  • 709 Posts
  • 107 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks