This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4906 Views
  • 0 replies
  • 0 Likes

How does Ansible panos_security_rule module work with device_group parameter?

I am trying to gather all the security rules for the specific device_group. Here is my playbook/YAML file: - name: Get all security rules fromt the Panorama paloaltonetworks.panos.panos_security_rule: provider: ip_address: "{{ panorama_host }}" api_key: "{{ netops_api_key }}" device_group: "shared" gathered_filter: "*" state: gathered registe...

ynorvo by L0 Member
  • 988 Views
  • 0 replies
  • 0 Likes

Getting system alert-high for Wildfire update failure, failed to extract file

This is occurring on our Panorama. Content of email alert is: Type: SYSTEMSubtype: generalTime: Apr 07 2022 00:12:55 GMTSeverity: highDetails: "Failed to extract file panupv3-all-wildfire-652605-655839.tgz with sha256: 647eedc7698709983f5e9d99dc0428cac00b16aef603a703b4e8572f041411eb" Not sure how to proceed to resolve.

High Disk Space Usage on / root partition of Panorama

Hi All, We are experiencing high disk space usage on the root partition of Panorama. Critical alerts on Panorama is showing "Disk Usage for / exceeds limit, 100 percent in use, cleaning filesystem". Output of "show system files" is as follows: @panorama> show system files /opt/panlogs/cores/:total 0 /var/cores/:total 1.8Gdrwxr-xr-x 2 r...

Adding Firewall to Strata Cloud Manager

Hello all, I have a question about Strata Cloud Manager. Does a local firewall configuration import to Strata Cloud Manager when you onboard the firewall? Or is there a way to upload the xml file to the firewall after its managed by Strata Cloud Manager.

Forwarding system logs to log collector

Hello, Currently we have firewall sending Threat and TRAFFIC log types with CEF format to Sentinel workspace through Linux log collector with omsagent. We need to send the System log types as well from the firewall to the log collector and then in Sentinel. In order to do that we followed the steps in highlighted guide: Azure-Sentinel/Solution...

Prodan by L0 Member
  • 3318 Views
  • 2 replies
  • 0 Likes

Panorama and PANOS RADIUS Authentication Failing after upgrade to 10.2

Hello, Thought I would pass on this solution I found. After upgrading our Panorama from 10.1 to 10.2, our RADIUS authentication no longer worked. The root cause was our Microsoft RADIUS server was using TLS 1.0 for the PEAP-MSCHAP TLS handshake and 10.2 REQUIRES TLS 1.1. The solution is to add the following registry setting to your Microsof...

BKRogers by L1 Bithead
  • 3058 Views
  • 1 replies
  • 0 Likes

How can I provde M-200 System drive is normal

Dear Community, The customer has an SSD LED that is blue and flashing. And the document only provides HHD status was bule and have not any information about SSD. Cause I cannot find any documents to provide M-200 System device (SSD) is in normal status. M-200 Appliance Front Panel Description (paloaltonetworks.com) Replacement only prov...

SAML for external admin, local admin for internal admin

Hi, been racking my brain trying to figure this one out. Essentially, to comply with regional guidelines for our client, we are enforcing MFA for all administrative accounts on the Palo Altos, which are internet facing. I have implemented SAML authenticating with Azure AD with Microsoft Authenticator for 2FA, which is all fine and well, and I a...

Connection between pxGrid and Panorama failed

Hi,I am currently trying to integrate Cisco pxGrid into PAN Panorama. I am using the Trustsec Plugin 2.0.0 & PAN-OS 11.1.2-h3. I have successfully created an account in the ISE and verified it. But when I create the pxGrid Server in Panorama I see the error message: “subscription [errno 16] device or resource busy”. Does anyone have experien...

madlenma_1-1721656029601.png
madlenma by L0 Member
  • 1469 Views
  • 0 replies
  • 0 Likes

Cannot create auth keys

Trying to generate an auth key to setup some dedicated log collectors. Tried in the GUI and CLI. In both instances I get the error, "Failed to add authkey. Failed to update DB." Runing 11.0.2-h2. Any suggestions?

Panorama Logs - Storage and LPS rate

Der All, I have couple of queries regarding Log storage and Lps. I have M300 Panorama appliance with Active/Passive. I have installed the Panorama HDD with full capacity which is 16TB HDD. I am managing 400+ firewall from this Panorama. For Initial period I will forward the fw logs to Panorama later will forward fw logs to SIEM solution. So ...

Ramakrishnan_2-1720506560807.png

Panorama Firewall logs

Dear All, I currently manage two M-300 Panorama devices in Active/Standby mode, each with a full disk capacity of 4x4 TB (16 TB each). My firewall logs are forwarded to the Active Panorama. Estimated log lps we need at least 93 TB of storage to store 14-15 days of logs, as we do not have that capacity at current Panorama deployment. Due to this...

Log collectors use a certificate due to expire

Dear community, When upgrading our log collectors to 10.2.9-h1 , we noticed that collectors are using a certificate that will expire soon. We need to know how to renew the certificate, and what happens if the certificate is not renewed or if it auto renews by itself? Thank you!

TammamA by L1 Bithead
  • 887 Views
  • 0 replies
  • 0 Likes

Allow google translate URL

My PAN-OS Version is 10.2.7-h8 and use PA-820 I try to allow google translate,and block other URL(include google search、google drive...) When I follow the link as below,but not successfully. https://docs.paloaltonetworks.com/advanced-url-filtering/administration/configuring-url-filtering/url-category-exceptions/guidelines-for-url-category-exce...

TRANSLATE.png
yasheng by L1 Bithead
  • 2183 Views
  • 1 replies
  • 0 Likes
  • 853 Posts
  • 47 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks