* [Blog](https://www2.paloaltonetworks.com/blog)
* [Network Security](https://www2.paloaltonetworks.com/blog/network-security/)
* [Next-Generation Firewalls](https://www2.paloaltonetworks.com/blog/network-security/category/next-generation-firewalls/)
* CN-Series Container Firew...

# CN-Series Container Firewall Now Supported on Oracle Kubernetes Engine

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fnetwork-security%2Fcontainer-firewall-oracle-kubernetes-security%2F)  
[](https://twitter.com/share?text=CN-Series+Container+Firewall+Now+Supported+on+Oracle+Kubernetes+Engine&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fnetwork-security%2Fcontainer-firewall-oracle-kubernetes-security%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fnetwork-security%2Fcontainer-firewall-oracle-kubernetes-security%2F&title=CN-Series+Container+Firewall+Now+Supported+on+Oracle+Kubernetes+Engine&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www2.paloaltonetworks.com/blog/network-security/container-firewall-oracle-kubernetes-security/&ts=markdown)  
\[\](mailto:?subject=CN-Series Container Firewall Now Supported on Oracle Kubernetes Engine)  
Link copied  
By [Chintan Udeshi](https://www.paloaltonetworks.com/blog/author/chintan-udeshi/?ts=markdown "Posts by Chintan Udeshi") and [Arun Poonia](https://www.paloaltonetworks.com/blog/author/arun-poonia/?ts=markdown "Posts by Arun Poonia")  
Jul 06, 2022  
4 minutes  
[Next-Generation Firewalls](https://www.paloaltonetworks.com/blog/network-security/category/next-generation-firewalls/?ts=markdown)  
[Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown)  
[Awareness](https://www.paloaltonetworks.com/blog/tag/awareness/?ts=markdown)  
[Cloud Architects](https://www.paloaltonetworks.com/blog/tag/cloud-architects/?ts=markdown)  
[Cloud Security](https://www.paloaltonetworks.com/blog/tag/cloud-security/?ts=markdown)  
[CN-Series](https://www.paloaltonetworks.com/blog/tag/cn-series/?ts=markdown)  
[DevOps](https://www.paloaltonetworks.com/blog/tag/devops/?ts=markdown)  
[network](https://www.paloaltonetworks.com/blog/tag/network/?ts=markdown)  
[network architects](https://www.paloaltonetworks.com/blog/tag/network-architects/?ts=markdown)  
[Oracle](https://www.paloaltonetworks.com/blog/tag/oracle/?ts=markdown)

We're pleased to announce the availability of [CN-Series](https://www.paloaltonetworks.com/network-security/cn-series) Container Firewalls on [Oracle Cloud Infrastructure](https://www.oracle.com/cloud/). With this release, customers can use CN-Series container firewalls to protect applications running on [Oracle Kubernetes Engine](https://www.oracle.com/cloud/cloud-native/container-engine-kubernetes/) (OKE) clusters.

OKE has been designed to reduce the time and cost that go into building modern cloud-native applications. With the Oracle-managed container orchestration service, DevOps engineers can use unmodified, open-source Kubernetes for application workload portability. With automatic updates and patching, the service opens up the potential for more productivity. Not only that, they can also use Helm Charts to streamline the deployment of container workloads.

**Network Security Needs to Extend to Containers**

For the uninitiated, containers may seem like a secure option for running applications. But in reality, network-based threats still apply to this revolutionary approach to operating system virtualization. Unfortunately, network security teams often lack container expertise and may not have the necessary tools to secure containerized apps. This can lead to a fragmented security posture, which can leave modern apps [vulnerable to attacks](https://www.paloaltonetworks.com/resources/whitepapers/your-containerized-applications-are-still-vulnerable).

Without easy access to the tools that secure containerized applications, network security teams have limited visibility and control over container traffic. This often results in slowing down important development efforts and can cause serious frustration between development and network security teams.
![Announcing CN-Series on Oracle Kubernetes. Gain best-in-class network security for containers and boost security productivity.](https://www.paloaltonetworks.com/blog/wp-content/uploads/2022/07/word-image-7.png)
CN-Series provides application-level visibility inside Kubernetes clusters

**CN-Series Takes on Container Vulnerabilities**

Thankfully, there is a solution to this problem. [The Palo Alto Networks CN-Series container firewall](https://www.paloaltonetworks.com/resources/ebooks/cn-series-container-firewalls-for-kubernetes) is the first next-generation firewall purpose-built to secure Kubernetes orchestration environments from network-based attacks. The CN-Series firewall enables network security teams to gain layer-7 visibility into Kubernetes environments, provide inline threat protection for containerized applications deployed anywhere, and dynamically scale security without compromising DevOps agility.

And that's a big deal for customers with containerized applications running on OKE. Organizations can now:

* Scale CPU and memory usage for applications
* Specify optimal deployment type (Daemon set mode or Kubernetes Service Mode)
* Easily configure the deployment of CN-series Container Firewall to protect containerized applications using YAML files or Helm Charts

![Announcing CN-Series on Oracle Kubernetes. Gain best-in-class network security for containers and boost security productivity.](https://www.paloaltonetworks.com/blog/wp-content/uploads/2022/07/word-image-8.png)
Dynamically scaling security with CN-Series and OKE

CN-Series ensures frictionless continuous integration/continuous development (CI/CD) pipeline deployment while delivering unparalleled runtime network protection through unified management across all multiple firewalls.

With CN-series available on Oracle Kubernetes Engine (OKE), customers can now deploy CN-series to protect their containerized applications running on OKE.

**Understand the Importance of Helm Charts**

Kubernetes has made container-orchestration incredibly easy, but dealing with [Kubernetes objects](https://www.containiq.com/post/kubernetes-objects) can be complex. That's where Helm Chart comes in: This popular package manager speeds the installation, updating, and upgrading of complex Kubernetes applications.

That's also a big deal, because Helm Charts allows you to:

* Deploy Kubernetes packages using the command line.
* Streamline deployment of container workloads through CI/CD pipeline as well enable teams to automate pre-and post-deployment actions.
* Customize application configurations so that the Helm Charts can be reused across multiple environments.

By deploying CN-series in OKE using Helm charts, you can simplify the deployment, and reduce duplication and complexity in deploying containerized workloads. What's more, you can diminish the time required to publish the applications quickly, which can substantially boost productivity.

**Get Started with CN-Series and OKE**

You can get started with CN-Series and OKE today by contacting our [sales team](https://www.paloaltonetworks.com/company/contact-sales) or just ask us for a [personalized demo](https://www.paloaltonetworks.com/company/request-demo). For more information about securing Kubernetes orchestration across environments check out the [CN-Series YouTube Channel](https://www.youtube.com/watch?v=sHZz9YkovgM&list=PLWGxHWZa19Z3KfdtBBvSqD0xkSWc-jqP9).

\_

Arun Poonia is a Principal Solutions Architect at Oracle whose work is currently focused on Oracle Cloud Infrastructure Network \& Security Partners. His experience over the last 10 years has been around architecting, designing, integrating, automation of different key partners and associated customers solutions in a hybrid cloud environment.

*** ** * ** ***

## Related Blogs

### [Hybrid Cloud Data Center](https://www.paloaltonetworks.com/blog/network-security/category/hybrid-cloud-data-center/?ts=markdown), [Network Perimeter](https://www.paloaltonetworks.com/blog/network-security/category/network-perimeter/?ts=markdown), [Next-Generation Firewalls](https://www.paloaltonetworks.com/blog/network-security/category/next-generation-firewalls/?ts=markdown), [Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown), [Zero Trust Security](https://www.paloaltonetworks.com/blog/network-security/category/zero-trust-security/?ts=markdown)

[#### CN-Series Container NGFWs Now on Red Hat OpenShift Platform OperatorHub](https://www2.paloaltonetworks.com/blog/network-security/cn-series-red-hat-openshift-security/)

### [Hybrid Cloud Data Center](https://www.paloaltonetworks.com/blog/network-security/category/hybrid-cloud-data-center/?ts=markdown), [Next-Generation Firewalls](https://www.paloaltonetworks.com/blog/network-security/category/next-generation-firewalls/?ts=markdown)

[#### Your Hybrid Cloud Is Under Attack: Explore Zero Trust at Our Event](https://www2.paloaltonetworks.com/blog/network-security/your-hybrid-cloud-under-attack-zero-trust/)

### [Next-Generation Firewalls](https://www.paloaltonetworks.com/blog/network-security/category/next-generation-firewalls/?ts=markdown), [Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown), [Zero Trust Security](https://www.paloaltonetworks.com/blog/network-security/category/zero-trust-security/?ts=markdown)

[#### Interactive Pricing Estimator Makes Cloud NGFW for AWS Even Easier](https://www2.paloaltonetworks.com/blog/network-security/interactive-pricing-cloud-ngfw-for-aws/)

### [Next-Generation Firewalls](https://www.paloaltonetworks.com/blog/network-security/category/next-generation-firewalls/?ts=markdown), [Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown)

[#### VM-Series Virtual Firewalls Top SecureIQLab Cloud Firewall Test](https://www2.paloaltonetworks.com/blog/network-security/secureiqlab-report-adv-cloud-firewall-vmseries/)

### [Next-Generation Firewalls](https://www.paloaltonetworks.com/blog/network-security/category/next-generation-firewalls/?ts=markdown)

[#### Cloud NGFW for Azure Now Generally Available](https://www2.paloaltonetworks.com/blog/network-security/cloud-ngfw-for-azure-goes-ga/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Next-Generation Firewalls](https://www.paloaltonetworks.com/blog/network-security/category/next-generation-firewalls/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Introducing Cloud NGFW for Azure --- On-Prem to Azure, Seamlessly Secure](https://www2.paloaltonetworks.com/blog/2023/05/introducing-cloud-ngfw-for-azure/)

### Subscribe to Network Security Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language