AWS Resource Monitoring with the AWS Plugin on Panorama
Learn how you can use the AWS Plugin on Panorama to secure
your AWS deployment.
As you deploy or terminate resources in the AWS public
cloud, you need a way to synchronously update Security policy on
your Palo Alto Networks® firewall(s) so that you can secure these
EC2 instances. To enable this capability from Panorama, you must
install the AWS plugin on Panorama and enable API communication
between Panorama and your AWS VPCs. Panorama can then collect a
predefined set of attributes (or metadata elements) as tags for
your AWS resources and register the information to your Palo Alto
Networks® firewall(s). When you reference these tags in Dynamic
Address Groups and match against them in Security policy rules,
you can consistently enforce policy across all assets deployed within
your AWS accounts.