Overview
The Palo Alto Networks CN-Series Container Firewall is the best-in-class next generation firewall purpose built to secure the Kubernetes environment from network based attacks.
The CN-Series firewall enables you to
- Gain Layer-7 traffic visibility and control within the cluster
- Stop lateral movement of threats
- Prevent known and unknown inbound attacks
- Apply egress filtering to prevent data exfiltration and unwanted outbound connections
- Dynamically scale security without compromising DevOps agility.
- Ensure a frictionless CI/CD pipeline deployment.
- Unify management across all your firewalls using Panorama.
Deploy CN-Series as-a-Kubernetes service and manage the fleet of firewalls from Panorama, alongside our hardware and VM-Series NGFW appliances to ensure consistent security posture everywhere. This subscription also includes industry-leading Threat Prevention, WildFire, URL Filtering, and DNS Security subscriptions that provide best-in-class runtime network security for East-West, Outbound and Inbound traffic.
Get started today with three simple steps (Please skip to step #3 if you already have a Panorama):
- Deploy Panorama on Amazon EC2: https://thinkwithwp.com/marketplace/pp/prodview-cjgnbhu6bozno
- Please email us at cn-series-aws-marketplace@paloaltonetworks.com to request a license for your Panorama. Also include: Full Name, Company Email, Company Name, Purchase Order Number, AWS Account Name and Account Id.. Follow these steps to register your Panorama: https://docs.paloaltonetworks.com/panorama/10-1/panorama-admin/set-up-panorama/register-panorama-and-install-licenses/activateretrieve-a-firewall-management-license-on-the-panorama-virtual-appliance.html
- Now that Panorama is licensed, please follow these steps to install CN-series on supported environments (EKS or RedHat OpenShift):
Highlights
- Protect containerized apps deployed anywhere with best-in-class network security
- Gain Layer-7 traffic visibility into the kubernetes environments, and write context-aware security policies
- Dynamically scale network security without compromising DevOps speed and agility
Details
Pricing
Dimension | Cost/month |
---|---|
Number of vCPUs | $403.00 |
Vendor refund policy
This is a placeholder value. Please update this value via the AWS Marketplace Management Portal.
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
Helm Chart
- Amazon EKS
- Amazon EKS Anywhere
Helm chart
Helm charts are Kubernetes YAML manifests combined into a single package that can be installed on Kubernetes clusters. The containerized application is deployed on a cluster by running a single Helm install command to install the seller-provided Helm chart.
Version release notes
RN1
Resources
Vendor resources
Support
Vendor support
To help you get started with your deployment, please visit our CN-Series on AWS resource page to access how-to videos, deployment guides, and discussion forums. If you encounter critical or complex issues once your deployment is completed, please contact support 24/7. https://live.paloaltonetworks.com/aws https://www.paloaltonetworks.com/services/support/customer-support-plan 1 (866) 898-9087
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.