This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VM-Series in the Public Cloud
The VM-Series is the virtualized form factor of the next-generation firewall. Use this discussion as a resource to discuss VM-Series deployments across public clouds like AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud, and Alibaba.
About VM-Series in the Public Cloud

Welcome to the VM-Series in the Public Cloud discussion forum! This community exists as a resource for you to discuss VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform, Oracle Cloud and Alibaba. We encourage you to engage in this rapidly growing community to share ideas, pose questions, and propose real-world solutions to any challenges that may arise.

Disclaimer:
This forum is provided for Live Community members to discuss and share information pertaining to the VM-Series deployments on AWS, Microsoft Azure, Google Cloud Platform Oracle Cloud and Alibaba. Please use the information from this forum at your own risk and make sure to test and verify proposed solutions presented here. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

Welcome to the VM-Series in the Public Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 3526 Views
  • 0 replies
  • 0 Likes

Azure Transit Build with VNG/LNG

Hi, I have build the configuration in Azure called the "Transit Vnet Build" with Azure Front LB, 2 Palo Alto VM, Azure Back LB. It works well. I used 3 NIC (management, untrust, trust). I want to connect this transit vnet to my local infrastructure. It seems that the best way to do that is using Azure VNG/LNG. So I build the tunnel and the confi...

Mellanox Drivers Support for PAN OS on VM series in Public Cloud

Do we have compatibility matrix for drivers for PAN OS version. Below is what I found but not sure if this applies to Public Cloud. What version of PAN OS Support both Mellanox 4 and 5 drivers. As per below support is only for 4. https://docs.paloaltonetworks.com/compatibility-matrix/vm-series-firewalls/sr-iov-and-dpdk-drivers

birojitn by L1 Bithead
  • 1510 Views
  • 2 replies
  • 0 Likes

XFF IP address not seen in traffic logs

I am trying to get the PA firewall to display and use the the x-forwarded-for (XFF) header in incoming web browsing traffic. I must be missing something. We have an Azure application gateway which is inserting the client_ip in the header, and stripping the port, as instructed: Use XFF IP Address Values in Security Policy and Logging (paloalt...

Keith_S_0-1718832288886.png
Keith_S by L0 Member
  • 2137 Views
  • 1 replies
  • 0 Likes

The device is not found or not registered, please try after some time

Firewall was rebuilt few weeks ago. just noticed, as i wanted to changed the default Client version, i get the Above error message the device is licenced yet the firewall is now missing from my "assets" in the portal, i have tried to add the serial in the portal by registering a new device but says the serial is invalid I have...

StevePayne_0-1717067827619.png
StevePayne_1-1717067860003.png
StevePayne_2-1717067959807.png

Azure Palo VM IPSec Tunnel to another Azure Palo VM

Hello, I am running into an issue. I have 1 Azure subscription with multiple regions (US , Europe etc). I have a Palo Alto Virtual Appliance in front of each region. Which filters all traffic going to and from the regions. I have successfully built tunnels with no issues to my on premise Palo Altos, but can't seem to figure out why I can't build...

iamroott by L0 Member
  • 3767 Views
  • 2 replies
  • 0 Likes

How to Increase the Size of the Root Partition on AWS VM Series Palo Alto

Hello everyone. I deleted some files from root partition(/dev/root) by referring to this URL.https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClaJCAS However, it is still relatively high at over 90% and we are considering expanding the capacity of the root partition in anticipation of future operations. I checked the...

Qui-Thi by L0 Member
  • 3592 Views
  • 1 replies
  • 0 Likes

Palo Alto with Azure Application Gateway Architecture Differs from Microsofts?

The palo alto architecture for using app gateway in front of your firewall seems to different from Microsoft. Palo wants you to set your backend pools of appgateway to the frontend of the palo (public ip side) and then use NAT to translate, This has downsides because you have to use a bunch of different ports as you only have one front end IP o...

JWhites by L1 Bithead
  • 11315 Views
  • 6 replies
  • 0 Likes

VM-series monitoring using CloudWatch

Hi Guys, I am trying to enable the VM-series Cloudwatch monitoring , referring the steps from - https://docs.paloaltonetworks.com/vm-series/10-0/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/deploy-the-vm-series-firewall-on-aws/enable-cloudwatch-monitoring-on-the-vm-series-firewall.html Within gateway enabled the option , On EC2 all...

Resolved! Traffic inspection in AWS using GWLB and HA

Hello Team, We are implementing Traffic Inspection in AWS using the Inspection VPC , TGW and GWLB architecture. We would need to ensure upon device failure/reboot inflight sessions are not terminated. We use VM Series 11. The official documentation has a section "Enable Session Resiliency on VM-Series for AWS" to achieve this which leverag...

szaboi by L1 Bithead
  • 4242 Views
  • 2 replies
  • 0 Likes

Calculate PA-VM series 2 records

Hello Can you help me?I need to add more memory to a PA-VM, since the current one only stores 1 day of traffic logs and I want to have 30 days of storage, I found this link but it talks about the PANORAMA solution and I think it is a little different. Cómo diseñar y dimensionar Panorama entornos de recopilador de ... - Knowledge Base - Palo Alto...

AWS: Deployment in Sandwich

Hi Team, We have deployed PA-VM in Sandwich architecture on AWS. During PA-VM deployment we swapped the management interface. In the application load balancer both PA-VM is showing Unhealthy. How we can make PA-VM Healthy in Application Load Balancer ?

  • 709 Posts
  • 107 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks