This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
CN-Series Discussions
CN-Series is the Palo Alto Networks' container native version of the ML-powered Next-Generation Firewall designed specifically for Kubernetes environments.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
CN-Series Discussions
CN-Series is the Palo Alto Networks' container native version of the ML-powered Next-Generation Firewall designed specifically for Kubernetes environments.
About CN-Series Discussions
CN-Series is the Palo Alto Networks' container native version of the ML-powered Next-Generation Firewall designed specifically for Kubernetes environments.

Discussions

Start a conversation

cn series pan-ngfw pod not ready

Hi All,

 

While working for CN series deployment, pan-ngfw pods are not becoming ready status , as getting this error in logs

Readiness probe failed: Panorama config is not pushed. pan_task is not running.

 

 

 

 

However, eks cluster monitoring st

...

skchakraborty_1-1705257414692.png
skchakraborty_0-1705257255151.png

pan-ngfw pods not ready

Hi, 

I'm deploying cnseries as services and catching the problem that pan-ngfw pods are running but not ready:

 

I checked the pods log and got this warning "Readiness probe failed: Panorama config is not pushed. pan_task is not running.":

 

Anyone

...

DNguyen46_0-1713778251880.png
DNguyen46_1-1713778333062.png

CN - Firewalls - Upgrade Sequence

So you have successfully updated container images  for pan-mgmt-sts and pan-ngfw. 

 

However when you updates the CNI images ngfw pods stop being able to talk .

 

Tried applying all and restarting all pods and it still fails. 

 

CNI 1.0.4 seems to be

...

Free CN-Series Firewall training!

Hello to all on the youtube channel "Strata by Palo Alto Networks" there is a free training. You can also  schedule a workshop if want to play with the technology a little more:

 

 

https://www.youtube.com/watch?v=sHZz9YkovgM&list=PLWGxHWZa19Z3KfdtBB

...

Resolved! GKE. Dataplane V2

Hi,

Is using  Dataplane V2  supported by the cn-series firewall?

https://cloud.google.com/kubernetes-engine/docs/how-to/dataplane-v2

 

This is the Recommended option and will be enabled by default in a future release by Google.

 

/Jo Christian

Workload Identity

Hi,

Does the CN-series firewalls support Kubernetes cluster with Workload Identity enabled?
https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity


Several reasons for asking. Main reasons being.
* Cluster security is changed.

* -worklo

...

CN Firewalls - Syntax

OK - so I can my two pan-mgmt-sts containers running and all is in synch .

 

Question , If I were usign a native PAN devices then I have a syntax I can use to download updates etc  from the command line..... 

 

What is it on the CN firewalls - it's a

...

CN Firewalls - AV updates/ WF updates

Hello All 

 

First time posting to this board so be real gentle with me . 

 

My question is around the CN series firewalls . Been wrestling with these babies for a while now and have read PA-CTNR unsupported platform guide back to front , back to fro

...

  • 12 Posts
  • 31 Subscriptions
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks