VM-Series Virtualized Next-Generation Firewall

The VM-Series is a virtualized form factor of our next-generation firewall that can be deployed in a range of public and private cloud computing environments based on technologies from VMware®, Amazon® Web Services, Microsoft®,  Citrix® and KVM.

In both private and public cloud environments, the VM-Series can be deployed as a perimeter gateway, an IPsec VPN termination point, and a segmentation gateway, preventing threats from moving from workload to workload. 

Next-Generation Security for Your Virtualized Data Center

The VM-Series combines next-generation firewall security and advanced threat prevention to protect your virtualized environments from advanced cyberthreats. The VM-Series natively analyzes all traffic in a single pass to determine the application identity, the content within, and the user identity.

These core elements of your business can then be used as integral components of your security policy, enabling you to improve your security efficacy through a positive control model and reduce your incident response time though complete visibility into applications across all ports. 

Securing the Private Cloud

Defined as an environment in which you are responsible for the management of all aspects of the virtualization, hardware, compute, networking, security, etc., a private cloud is often considered to be an extension of your existing data center.

The VM-Series allows you to protect your private cloud infrastructure using application enablement policies while simultaneously preventing known and unknown threats. The VM-Series supports the following private cloud environments: VMware® ESXi™ and NSX™, Citrix® Netscaler® SDX™, Microsoft Hyper-V and KVM/OpenStack®.





Securing the Public Cloud

Defined as a ready-made compute, networking, and storage environment, the public cloud brings ubiquitous access to users, rapid scalability to address workload “bursts,” and infrastructure consistency. In a public cloud, ensuring your applications and data are kept safe from attackers is your responsibility, and that is where the VM-Series can help.

The VM-Series protects your public cloud infrastructure using application enablement policies while simultaneously preventing known and unknown threats. The VM-Series supports the following public cloud environments: VMware® vCloud® Air™, Amazon Web Services (AWS) and Microsoft Azure.

Protecting Mission-Critical Applications and Data Using Zero Trust Principles

Security best practices dictate that your mission-critical applications and data should be isolated in secure segments using Zero Trust (“never trust, always verify”) principles as a means of controlling access.

Our zone-based policy architecture enables you to use the VM-Series to build access control policies based on the application and the user, effectively segmenting the applications and protecting east-west traffic between virtual machines. 



Blocking Lateral Movement of Cyberthreats

Today’s cyberthreats commonly compromise an individual workstation, or user, and then move across the network, looking for a target. Within your virtual network, cyberthreats move laterally from VM to VM in an east-west manner, placing your mission-critical applications and data at risk.

Exerting application-level control using Zero Trust principles in between VMs will reduce the threat footprint while applying policies to block both known and unknown threats.



Security that Keeps Pace with Your Business

Panorama™ network security management enables you to manage your VM-Series deployments, along with your physical security appliances, thereby ensuring policy consistency and cohesion. Rich, centralized logging and reporting capabilities provide visibility into virtualized applications, users and content.

To automate firewall deployments and policy updates, you can use a combination of Bootstrapping, an XML API and native management features to deploy fully configured firewalls in minutes and dynamically drive security policy updates based on workload changes.



The VM-Series

The VM-Series is comprised of the VM-1000-HV, VM-300, VM-200 and VM-100. To learn more about the VM-Series performance and capacities, please visit the firewall comparison tool



VMware NSX with Next-Generation Security from Palo Alto Networks

While organizations have gained operational flexibility and lowered data center costs by deploying virtualization solutions, the true promise of a secure, agile, extensible, and flexible private cloud continues to be elusive. One of the key barriers is the ability to deploy security services at the same pace as virtual machine deployments without compromising the level of protection needed. VMware and Palo Alto Networks have partnered to address these challenges.

  • 2
  • 8897

VM-Series for Microsoft Azure Overview

Overview of the VM-Series deployed in a hybrid scenario to securely extend your data center to Microsoft Azure.

  • 0
  • 832

Securing the Hybrid Data Center with the VM-Series

In this webinar, we cover key security considerations to protect your hybrid data center from cyber criminals with the VM-Series.

  • 0
  • 230

Multinational Defense Agency

Being a high profile government organization, this multinational Defense Agency needed to ensure a secondary layer of defense for its network at the edge, and for both its restricted and secure networks. Serving up to 10,000 users, its current solution was costly and was not from a preferred country of origin. This Case Study available in Japanese and German.

  • 2
  • 490

Expanding Data Centers: 3 Benefits of a Hybrid Cloud Approach

This brief discusses the three key benefits of using a hybrid cloud approach

  • 0
  • 428

Military Tactical Case Study

Read how Palo Alto Networks VM-Series Next-Generation Security Platform secures communications for mission-command applications for this military customer.

  • 0
  • 85