Resolved! How to create multiple policy objects using Panorama

Is there any quick way to configure multiple policy objects on Panorama? especially looking to configure hundreds of fqdn objects to push them to firewalls managed through panorama so using GUI is quite a lot of work.

e.g. for standalone PA, it is q

Resolved! Panorama VM 7.1.0 - Difference between debug reboot and reboot

If you go into maintenance mode you have two options "debug reboot" and "reboot."

What are the differences between these two boot modes as they both seem to do the same thing and get me back to the panorama login.

Resolved! Outputs Limit! Service restart loop @ 30+

So the title is a slight misnomer.

Have a dev server with 59 miners, 42 procs, and 32 outputs, works fine.

Have a prod server with 58 miners 41 procs and 29 outputs, does not work fine.

The two devices are set up with "identical" configs the dev server

Resolved! Security policy that permits traffic to any *.office365.com ?

I see there is an FQDN option for Destination Address when I create a security policy.

I want to permit port 993 to any host in office365.com. Will it work if I just put office.com

in the FQDN destination? Trying to put the * wildcard causes the widget

Resolved! Adding Address object to GlobalProtect split tunnel access route list

Hi.  In the Palo Alto firewall, I've created a new Address object with the type set to FQDN and with a valid DNS record.   Saved and committed the change.  Then I try to add this newly created address object to the access route list in the GlobalProt

Resolved! Antivirus Dynamic Update fails PAN-OS 8.1.0 Cluster

Hi Community,

I have a PA-850 Cluster with PAN-OS 8.1.0 and a valid Threat license.

The active firewall is configured to download and install antivirus updates and sync them to his peer.

Unfortunately, the update failed lately, so we were 4 days behin

Resolved! Disabling Indicator Expiration

@lmori, thank you for your help so far.

I am migrating my data to the "stdlib.localDB" miner, per your suggestion here.

I have two questions now:

First, I noticed that the default expiration for indicators added to this miner is just one day. How can

Resolved! TAP mode interface drop

Hi. I have a question about TAP deployment

I set the TAP mode which I used just one interface, set the zone TAP

Security policy TAP-TAP any any permit.

Then, regularly I'm checking the global counter, but I don't know why the drop packet occured.

When