Palo Alto VM Series Virtual Next-Generation Firewall - BYOL logo

Palo Alto VM Series Virtual Next-Generation Firewall - BYOL

Product Overview

Palo Alto Networks VM-Series Virtual Next-Generation Firewalls provide all the capabilities of our physical NextGeneration Firewalls in a virtual machine (VM) form factor, delivering inline network security and threat prevention to consistently protect public and private clouds, virtualized data centers, and branch locations. The broad capabilities of the VM-Series are designed to meet today’s network security challenges, giving teams the power to inspect and control inbound and outbound traffic in public cloud environments as well as define and enforce segmentation and threat prevention policies between trust zones in virtualized data centers and branches. The VM-Series effectively addresses the security challenges of hybrid and multi-cloud environments as well as branch offices by providing deep visibility and precise control, reducing the attack surface and preventing threats, and automating network security at scale. As organizations transition from traditional data center architectures to private clouds, their security teams encounter challenges unique to individual use cases, such as SDN and virtual desktop infrastructure (VDI). Some examples of use-cases for private cloud environments are:

  • Segmentation and Microsegmentation: Protect Against Lateral Movement
  • Augment Software-Defined Networking with Threat Prevention
  • VDI Security Meets Threats to Remote and Distributed Workforces


Palo Alto Networks VM-Series differ from other virtual firewalls in four areas critical for network security teams.

  • Elastic and Scalable Deployment Meets Actual Needs
  • Automated Orchestration Provides Security at DevOps Speed
  • Operational Simplicity Alleviates the Need for Multiple Products
  • Best-in-Class Security Helps Ensure Ongoing Operations

Match software firewalls and security services with the speed and flexibility needed for rapidly changing cloud requirements. Maximize your ROI on security investments with the industry’s most flexible way to adopt software NGFWs and security services. Discover unmatched flexibility with easy scaling and sizing of VM-Series virtual and CN-Series container NGFWs

Editor Details

Palo Alto Networks, Inc. is an American multi-national cybersecurity company with headquarters in Santa Clara, California. Its core product is a platform that provides advanced firewalls and additional cloud-based firewall extensions to cover further aspects of security. The company serves over 70,000 organizations in over 150 countries, including 85 of the Fortune 100. It is home to the Unit 42 threat research team and hosts the Ignite cybersecurity conference.

Maintainer Details

Founded in 2002 and based in Morges, SCRT is specialized in information systems security. The company offers intrusive audits, SOC, defense consulting, governance, cloud security and integration of specialized solutions.

Version Details

Palo Alto Strata Firewall is available in the following versions:

  • 10.1.5
  • 10.2.1


The total end customer pricing is the sum of the pure IaaS price according to the Exoscale price information and the license cost for the Palo Alto image. For the BYOL model the customer has to manage the license and the related costs.

Usage & Technical Prerequisites

The virtual appliance is available in multiple models to provide a suitable fit for customer needs and PaloAlto per CPU licensing:

Licensed CPUs Recommanded Exoscale VM offering Note
2 CPUs Memory Optimized EXTRA-LARGE A minimum 4.5Gb of RAM is required
4 CPUs Standard LARGE

Find more details in the VM-Series Deployment Guide and Credit Calculator.

Please note, that it is the responsibility of the customer to purchase a license and a software subscription.

SCRT can assist you with licensing.

Technical Documentation

A documentation details how to deploy Palo Alto VM Series on Exoscale is available.

For the initial configuration through the vendor web GUI or ssh interface, please use the default credentials username: admin and password admin.

It is the responsibility of the customer to change this as soon as possible. Additionally, it is the responsibility of the customer to protect the admin interfaces port 22 (ssh) and port 443 (http) via security groups, so that only intended people can access them.

For technical limitations, please see the official vendor documentation.

Service and Support

With the BYOL model the customer is fully responsible for service and support.

  • For issues related to the software (eg.: configuration, functionality, etc.) itself, the customer needs to contact his licence Supplier. If bought at SCRT you can contact their support desk below.
  • For issues related to the BYOL template (eg.: build issues, version issues, interaction with the underlying infrastructure, etc.), the customer needs to contact the maintainer: SCRT support desk
  • For issues related to the infrastructure (eg.: account management, virtual machine issues, etc.) the customer needs to contact Exsocale: Exoscale support desk

Terms of Service

By using this product, you agree to terms and conditions according to the Palo-Alto end user license agreement (EULA).