Can we export Security Policies and Service Objects to from Firewall to Panorama?

Hi All, 

I have configured some security policies and service objects on my lab environment which consists of VM-100 Firewall for ESXi running PAN OS 8.1.0. Can I export my settings to production environment which consists of 8 ESXi hosts, Panorama an

Universal policy Implicit Deny blocking Intrazone Traffic

Hi All,

I configured the implicit deny (Universal Policy) policy at the bottom of security policies but after that, I could see that some of the Intrazone access got denied by the implicitly deny policy.

How we can achieve the Implicit deny policy wi

Do not see deny in traffic logs for traffic to internal server accessible via Public IP

We have server reachable via Public IP say on port 13001 and 13002

We have Security rule 

Source any  

Zone outside 

Destination 173.82.x.x IP  of server

Zone inside

port 13001

Here i have not included the port 13002.

I have correct NAT policy for t

Migrating multiple HA pairs to Panorama

Hello,

We need to migrate multiple firewall clusters to Panorama. I read the guides but there are still some questions about objects and IP addresses, certificates, etc...

Once I have migrated one cluster, what about the other ones if they have some

Session Ownership in Active/Active HA scenario

Hi There,

I will be greatful if anyone can please help me to understand the below which is taken from  https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/high-availability/session-owner.html

Configuring OSPF & Multicast in Palo Alto firewall sub-interface

We have a requirement to configure OSPF & multicast in a sub-interface of Palo Alto for one of our customers. I would like to understand how it would impact the CPU, memory and throughput and the guidelines and best practices to be followed while con

Global Protect client for linux

Hey all,

I've just updated the global protect version to 4.1.8

In the docs, it says that the client supports linux.

I've followed that doc:
https://docs.paloaltonetworks.com/globalprotect/4-1/globalprotect-app-user-guide/globalprotect-app-for-linux/downl

PAN OS 8.1.5 - Thoughts?

Hi there! Has anybody had the chance to play with PAN OS 8.1.5 yet in Production? Are there any noticable issues? I've been locked into this killchain of bugs ever since we made the leap to 8.1.0, and I'm just wondering if this build will be the "sta

Feature Request: Do Not Require Machine Certs to be Imported on the Firewall

For some background: We recently impelmented a data protection strategy within our organization and would like to restrict the Global Protect remote access VPN service only to domain-joined laptops.  Since all our endpoints within our environment rec