VM-SERIES ON AWSAccelerate your AWS adoption with rock-solid cloud security

Protect your application development workflow, prevent data loss and business disruption

The VM-Series on Amazon® Web Services, or AWS® , is a virtualized next-generation firewall you can embed into your AWS deployments to protect them from a broad range of advanced threats.

Move safely to the public cloud.

AWS promises greater agility, scale and cost-efficiency – but how can you be sure your critical deployments are protected against advanced cyberthreats? By harnessing the advanced security capabilities of the VM-Series on AWS.

Complete Visibility

Threat Prevention

Prevent zero-day exploits and malware.

WildFire® cloud-based threat analysis service uniquely combines dynamic and static analysis, innovative machine learning techniques and a groundbreaking bare-metal analysis environment to detect and prevent even the most evasive threats.

Learn More

Stop data exfiltration.

Prevent data exfiltration by controlling the applications that can transfer files and limiting the use of the file transfer function. Threat Prevention policies can then be applied to prevent command-and-control activity from being used to deliver secondary payloads, provide next-step attack instructions or exfiltrate data.

Learn more

Continuously improve prevention.

Detailed logs of all threats aren’t merely housed within the same management interface; they’re shared between all prevention mechanisms to provide context and continually improve protection to stay ahead of attackers. Threat behaviors WildFire observes help improve other prevention capabilities over time.

Learn more

Automated Deployment

Scalability & Resilience

Dynamically scale security.

Integration with AWS Auto Scaling and Elastic Load Balancing allows you to address variances in your AWS traffic by scaling next-generation security dynamically yet independently of your application workloads.

Learn More

Enable cloud-centric high availability.

Native AWS resilience features, including Auto Scaling, Elastic Load Balancing and Auto Scaling Groups, enable you to achieve cloud-centric high availability to maximize business-critical application uptime.

Learn More

Cost-effectively protect large-scale deployments.

A shared services architecture, such as the Transit VPC, centralizes the VM-Series next-generation security, connectivity and other commonly used services, resulting in a more cost-effective, easy-to-manage alternative to backhauling traffic to a corporate firewall or deploying a VM-Series per VPC.

Learn more

Are you ready to take the
Ultimate Test Drive?

If you're ready to take the test drive, pick the best time for you below!

All times are displayed in Pacific Standard Time

Get your knowledge on


Lightboard Series: Firewall Services VPC…


Lightboard Series: Firewall Services VPC Integration…

Auto Scaling the VM-Series on AWS Lightboard and Demo

Next-Generation Security on AWS Lightboard

VM-Series on AWS Demo

View an Auto Scaling GlobalProtect on AWS Demo

SANS Webinar: Know Before You Go – Key AWS Security Considerations

5 Steps to a Hybrid Architecture Webinar

Comparing the VM-Series and Security Gro…

Tech & Solution Brief

A quick review of the shared responsibilities model and how the VM-Series comple…

What's New in PAN-OS 8.0

What's New in PAN-OS 8.0

PAN-OS 8.0: Protection. Delivered. To provide organizations with the best secu…

Transit VPC With the VM-Series


Organizations are rapidly migrating their enterprise applications and data onto …

Auto Scaling the VM-Series on AWS Tech N…


Organizations are moving their enterprise applications onto AWS for a range of b…

VM-Series for Amazon Web Services


Key features, performance capacities and specifications of VM-Series for Amazon …

VM-Series for AWS Hybrid Cloud Deploymen…

White Paper

This whitepaper walks through both AWS and VM-Series deployment guidelines for b…

AWS Reference Architecture

White Paper

This guide provides a foundation for securing network infrastructure using Palo …

Building a Scalable GlobalProtect Deploy…

White Paper

Protect your mobile workforce and network from internet-borne threats with a sca…

Security Considerations for Private vs. …

White Paper

This whitepaper, written by the Cloud Security Alliance, provides an in-depth di…

Securing the Virtualized Data Center wit…

White Paper

As your organization evolves from traditional data centers to virtualized and cl…

Government: Securing Your Public Cloud D…

White Paper

This paper explains how Palo Alto Networks VM-Series can provide threat preventi…

Cloud First, Now What?

White Paper

This Cloud Security Alliance whitepaper will help cloud initiative decision make…

Cloud Adoption Risk and Compliance

White Paper

Public cloud adoption poses risks. Senior leaders should understand and manage t…

Customer Case study: Achieving PCI Compliance in AWS (Video)

Warren Rogers Associates

Customer Case Study

As an industry leader in retail fuel monitoring and diagnostics, Warren Rogers …

Customer case study: Gigamon (Video)

Verge Health

Customer Case Study

Healthcare Risk Management Provider Secures Its SaaS Environment on AWS With Nex…

Customer case study: Verge Health (Video)


Try It Now: Take the Test Drive

Evaluate It Now: Free 15 Day Trial

Buy It Now: Available on AWS Marketplace

VM-Series on AWS GovCloud (Login Required)

VM-Series on AWS GovCloud (Login Required)


Visit the Live Community

Auto Scaling the VM-Series on AWS Deployment Resources

Set Up the VM-Series Firewall on AWS

Security Policy

VM-Series on AWS Internet-Facing Deployment Guide

Use Case: Use Dynamic Address Groups to …

VM-Series on AWS and GlobalProtect Deployment Guide

Centrally Manage Your VM-Series Deployment