Firewall and Panorama mangement certificate expire

Hi, 

We recently upgraded the firewall models 3220 and 820 last week and are managing them through Panorama. However, we received an alert message yesterday and also getting the alert message if i logging the panorama. Should we ignore this alert?

Prisma Access 3.2 Known Issue CYR-28288

One of our customers was affected  by the Prisma Access 3.2 Known Issue CYR-28288

CYR-28288 --> When performing commits or upgrades, a Prisma Access deployment requires internet connectivity; without internet connectivity, certificate validation wi

Firewall has the IPSec tunnel but Panorama don't. How to fix?

Hi Guys,

We have one of the IPSec tunnel missing on Panorama but it is configured on individual Firewalls (HA pair). The tunnel is up and running. We don't want any downtime on VPN tunnel.

Can I simply add missing IPSec tunnel to Panorama and do just

XML API not working

I am facing an issue with the Palo Alto API where I am unable to exclude 'policy-and-objects' and 'shared-object' in partial changes. When I try to use the following XML structure in my API request:

https://firewall/api?type=op&cmd=<show><config><l

Panorama Upgrade Package is not visible in GUI

Hello Folks,

Need a guidance, when i upload the the Panorama package manually its says that already exists but in GUI its not visible and also checked in via CLI, I dont find the version listing. How to fix this.?

Thanks

Sharath.

Schedule Firmware Update via Panorama or Schedule NGFW Reboot via Panorama

Title says it all.

Need to patch 16 NGFWs in geographically disparate locations.

I see that I can schedule config changes and exports

I see that I can push firmware in 3 ways: download, download+install, download+install+reboot. I do not see any

test

test

How to set the rule order using CLI on Panorama

Hi, when configuring rules using CLI on Panorama, I used the following syntax, however, if I have multiple rules, how do I configure the order of different rules?

set device-group DGName pre-rulebase security rules RuleName to xxxxxx

set device-gro

Failover Panorama VM with ESXI

Assistance with Design of Palo Alto Firewalls & Panorama

Hello All,

I have attached network topology based on Fortigate firewalls which needs to be migrated to Palo Alto on all 3 sites, Plus I Want to use PANOS SDWAN with Panorama as well, Brief description of network is 

- HO site will have 2 x PA 1410

Panorama and Paloalto Firewall Communication

Dear Folks, 

I have firewall and Panorama in a large scale deployment. I would like to understand the process and procedure Device Certificate,

As per project plan we are going to deploy Panorama first following deployment of local managed firewall

Need help in setting up a basic lab

I am a complete beginner new to Palo Alto. I have a lab setup with Palo Alto management IP 192.168.1.51 and a windows server 2022 machine with IP 192.168.1.57. I want to create a rule on Palo Alto firewall to stop the internet access to the server. T

How to delete tags in Panorama from CLI ?

Hi all

I have an issue and i need your help.

I need to delete tags like "FQDN" from Panorama from the CLI.

When i issue this command below i have an error message:

command :  delete shared tag FQDN

Response : Object doesn't exis

What did i miss?

Why do all my Panorama security rules have the same "Modified" date and time?

In the NGFW, under Policies > Security, there is a "Modified" field.
It usually shows the date and time the Security Rule was modified.
I don't see any modifications to the group objects in the security rule that would allow duplicate use.
However, the