This document explains the maximum number of rule objects supported on Palo Alto Networks devices.
To view the maximum number of values for rule objects, run the following CLI command:
> show system state filter cfg.general.max*
Below is a table that displays the maximum number of security policies per platform:
Are these maximums per physical device or per Vsys?
The maximums are per device.
Thank you very much for clarifying. :-)
Is the Pa7050 number correct? I thought it was 80000
Hi, the document was updated to reflect the correct number. The numbers here should correlate with the information on the Product Selection page on our website.
Are there any numbers available for the PA-VM-1000-HV ?
How about PA220?
@MinhNguyen updated article to include new models
what happens if the number of policies that Panorama pushes exceeds the threshold that the device can manage? (i.e panorama pushes down more than 1000 security policies to PA-500)
The commit will fail