1. Home
    2. VM-Series

    VM-Series is the virtualized form factor of the Palo Alto Networks next-generation firewall. To meet the growing need for inline security across diverse cloud and virtualization use cases, you can deploy the VM-Series firewall on a wide range of private and public cloud computing environments such as VMware, Cisco ACI and ENCS, KVM, OpenStack, Amazon Web Services, Microsoft public and private cloud, OCI, and Google Cloud Platform.

    What's New

    Highlights
    Use the Panorama  plugin for VMware NSX 3.1 to secure  all East-West traffic in your NSX-T data center.
    PAN-OS XFR is here! XFR releases deliver new features for the VM-Series firewalls more frequently than a regular PAN-OS release. The first release is PAN-OS 9.0.3.xfr.

    Support for Cisco Cloud Services Platform 

    Deploy the VM-Series firewall as a network virtual service on CSP5400 Series and CSP2100 Series.

    Support for Oracle Cloud Infrastructure (OCI)

    VM-Series firewalls are now available for Oracle Cloud Infrastructure (OCI). You can protect and segment your workloads, prevent threats and improve visibility into your applications as you move to OCI.
    Date Other New Releases
    Apr 2020
    Mar 2020
    Feb 2020

    The VM-Series plugin 1.0.9 introduces marketplace support for the VM-Series firewall on OCI, HA support for the VM-Series firewall on OCI, and bug fixes.
    Jan 2020
    • The Panorama plugin for AWS 2.0.0 introduces VM monitoring, support for securing AWS Elastic Kubernetes Service (EKS) clusters, and bug fixes.
    • The Panorama plugin for VMware NSX 3.1.0 introduces support for the VM-Series firewall on VMware NSX-T to secure East-West traffic.
    View all VM-Series Releases

    Do You Want to Know About:

    1. VM-Series Deployments
    2. Hypervisors and Cloud Platforms Supported
    3. Set Up the VM-Series Firewall on AWS
    4. Set Up the VM-Series Firewall on Google Cloud Platform
    5. Set Up the VM-Series Firewall on Google Cloud Platform
    6. Bootstrap the VM-Series Firewall

    Spotlight

    VM-Series Enterprise License Agreement (ELA)

    Learn More

    Transit VNET Architecture with the VM-Series on Azure

    Watch Now

    Public Cloud Reference Architecture Guides

    Read Now

    PAN-OS XFR Release Notes (for VM-Series firewalls only)

    What's New?

    Documentation

    VM-Series Deployment Guide

    The Palo Alto Networks VM-Series firewall is the virtualized form of the Palo Alto Networks next-generation firewall. Use the VM-Series firewall deployment guide to learn how to secure your protect apps and data in virtualized data center, private cloud, and public cloud deployments.

    Choose Version

    Data Center Best Practice Security Policy

    Your enterprise's most valuable assets reside in your data center, including proprietary source code, intellectual property, and sensitive company and customer data. Your customers and employees trust you to maintain the confidentiality and integrity of their data and expect that data to be always available, so it's important to implement a data center best practice security policy that safeguards your data and prevents successful attacks. Use the guidelines in this site to plan, deploy, and maintain your data center best practice security policy.

    Choose Version

    PAN-OS® Release Notes

    Thinking about upgrading your next-gen firewalls and Panorama to PAN-OS 9.0? Before you begin, make sure you review the release notes to learn about known issues, issues we've addressed in the release, and changes in behavior that may impact your existing deployment.

    Choose Version

    PAN-OS® XFR Release Notes for VM-Series Firewalls

    Read Now

    VM-Series Performance & Capacity

    Read Now

    All Release Notes

    Read Now

    Videos

    Protect Containers Running in Google Kubernetes Engine

    The VM-Series on GCP protects containers running in Google Kubernetes Engine. Container visibility empowers security operations teams to make informed security decisions and respond more quickly to potential incidents

    Automating Security for Dynamic Workloads

    Modern application workloads need to move in and out of cloud deployments and on-premises data centers sometimes located around the globe. Learn how to protect your dynamic workloads by abstracting security from the IP address.

    Simplifying Security Across Cisco ACI

    Learn how to integrate VM-Series with Cisco ACI to enable uniform security policy and posture across your physical and virtualized firewalls. This implementation makes sure security in your software defined data center is deployed in lockstep as your application infrastructure expands, contracts, and changes.

    Lightboard Series: Scale Out Architectures for the VM-Series on Azure

    A brief overview of how you can use Azure Load Balancers to assemble scalable VM-Series architectures on Azure including: (1) achieving managed scale for inbound traffic; (2) delivering outbound scale while protecting workloads from lateral (east-west) threat movement and (3) deploying a shared service architecture that centralizes security and connectivity.

    Lightboard Series: Firewall Services VPC Integration

    This Lightboard discusses how to integrate the VM-Series next-generation firewall into an AWS Services VPC architecture as a means of addressing security for an environment with many VPCs.

    Simplifying Security Across VMware NSX

    Learn how to protect your applications and data in the virtualized data center using the automated provisioning and deployment of Palo Alto Networks Next Generation Firewalls with VMware NSX.

    Secure Your Nutanix Hyper Converged Infrastructure

    The VM-Series firewall for Nutanix AHV allows you to deploy the VM-Series firewall on devices capable of running the Nutanix Acropolis Hypervisor.

    Lightboard Series: Autoscaling GlobalProtect in AWS

    This Lightboard video is an overview on how to automatically scale GlobalProtect remote access solution up and down to meet real time demand while reducing costs.

    Lightboard Series: VM-Series for Azure Overview

    Overview of the VM-Series for Azure deployed in a hybrid scenario, securely extend your data center to Azure.

    Related Documents

    Best Practices

    At Palo Alto Networks, it’s our mission to develop products and services that help you, our customer, detect and prevent successful cyberattacks. We’ve developed our best practice documentation to help you do just that. Whether you’re looking for the best way to secure administrative access to your next-gen firewalls and Panorama, create best practice security policy to safely enable application access at the internet gateway and the data center, or learn the best way roll out a decryption policy to prevent threats from sneaking into your network, you will find the guidance you need here in our best practice documentation. And, our best practice library keeps growing and evolving to keep up with the ever-changing threat landscape, so be sure to check back often!

    Get Started

    Firewalls & Appliances

    Palo Alto Networks® next-generation firewalls detect known and unknown threats, including in encrypted traffic, using intelligence generated across many thousands of customer deployments. That means they reduce risks and prevent a broad range of attacks. For example, they enable users to access data and applications based on business requirements as well as stop credential theft and an attacker’s ability to use stolen credentials.

    Hardware Guides

    Prisma Cloud

    Prisma Cloud provides comprehensive visibility and threat detection across your organization’s entire public cloud environment. Because virtual machines, application instances and workloads change rapidly it’s hard to get a good picture of what’s going on within cloud services such as Amazon Web Services, Microsoft Azure, and Google CLoud Platform. The service taps into the cloud providers’ APIs for read-only access to your network traffic, user activity and configuration of systems and services, and correlates these disparate data sets to help you prioritize risks and quickly respond to issues.

    Learn More

    Translated VM-Series Documentation

    View Translated Documents

    © 2020 Palo Alto Networks, Inc. All rights reserved.

    Techdocs Logo