Call a Specialist Today! (02) 9388 1741
VM-Series Virtual Firewalls
Secure Any Cloud with ML-Powered NGFW Protection
VM-Series Key Benefits
Full NGFW Capabilities in the Cloud
- App-ID, Content-ID, User-ID, and WildFire run identically in VM-Series
- Same application visibility and threat prevention as PA-Series hardware
- Layer 7 inspection identifies threats hidden inside allowed application traffic
Flexible Consumption Model
- Software NGFW Credits allow elastic scaling from 2 to 64 vCPUs
- On-demand allocation of security services across deployments
- Reallocate credits without additional procurement or lengthy cycles
Centralized Management
- Panorama and Strata Cloud Manager unify policy across VM-Series and hardware firewalls
- Single policy framework eliminates separate tools for cloud and on-premises
- Centralized logging and reporting for complete cross-environment visibility
Consistent Compliance Posture
- PCI DSS, HIPAA, and SOC 2 coverage extended into cloud environments
- Same certified protection used on-premises deployed to any cloud
- Unified audit trail across hybrid infrastructure for faster evidence collection
Protect All Workloads
- Get complete Layer 7 inspection across all cloud workloads using App-ID
- Stop lateral movement of threats with microsegmentation and granular policies
- Enforce Zero Trust for every workload regardless of environment
- Secure allowed traffic between microsegments with trust zone enforcement
Streamline Operations
- Replace tool sprawl with a centralized command center and unified security fabric
- Single policy framework across hardware and virtual firewalls
- Centralized logging and reporting for complete visibility across environments
- Infrastructure-as-code integration with Terraform, Ansible, and cloud-native templates
Save and Scale
- Automatically scale up and scale down to meet real-world traffic needs
- Elastic scaling from 2 to 64 vCPUs based on credit allocation
- Reallocate credits across deployments without additional procurement
- Available on AWS, Azure, and GCP marketplace for rapid deployment
Unified Hybrid Defense
- PA-400 or PA-1400 Series secures HQ and branch offices on-premises
- VM-Series secures AWS, Azure, and GCP with the same PAN-OS policy framework
- Panorama or Strata Cloud Manager provides single-console management across both
- Eliminate duplicate policy frameworks and reduce operational overhead
Documentation:
Download the VM Series Specification Datasheet (PDF).
Native Cloud Security vs. VM-Series
Cloud provider security controls address basic network filtering. VM-Series provides the application-level inspection and consistent policy enforcement required for enterprise security and compliance.
Visibility
Cloud provider firewalls operate at Layer 4, filtering by port and protocol. VM-Series inspects at Layer 7, identifying applications regardless of port, protocol, or encryption.
Consistency
Separate policy frameworks for on-premises and cloud create operational overhead and security gaps. VM-Series uses the same PAN-OS rules and objects used on PA-Series hardware.
Compliance
PCI DSS, HIPAA, and SOC 2 require documented, consistent security controls. VM-Series extends the same certified protection used on-premises into cloud environments.
Supported Platforms
VM-Series deploys across all major public clouds, hypervisors, and software-defined networking environments.
Public Clouds
- Amazon Web Services
- Microsoft Azure
- Google Cloud
- Oracle Cloud
- Alibaba Cloud
Hypervisors
- VMware ESXi
- KVM
- Microsoft Hyper-V
- Nutanix AHV
- OpenStack
SDN Solutions
- VMware NSX-T
- Cisco ACI
- Nutanix Flow
Additional Environments
- 5G mobile networks
- Critical infrastructure (OT)
- SD-WAN deployments
- Software-defined branches