Learn how you can use the AWS Plugin on Panorama to secure
your AWS deployment.
As you deploy or terminate virtual machines in the AWS
public cloud, you need a way to synchronously update Security policy
on your Palo Alto Networks® firewall(s) so that you can secure these
EC2 instances. To enable this capability from Panorama, you must
install the AWS plugin on Panorama and enable API communication
between Panorama and your AWS VPCs. Panorama can then collect a
predefined set of attributes (or metadata elements) as tags for
your EC2 instances and register the information to your Palo Alto Networks®
firewall(s). When you reference these tags in Dynamic Address Groups
and match against them in Security policy rules, you can consistently
enforce policy across all assets deployed within your AWS accounts.