This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4845 Views
  • 0 replies
  • 0 Likes

Resolved! Import device configuration to Panorama - Policies

Hello, I want to know if I can import policy rules from local Firewall to Panorama, using this operation "Import device configuration to Panorama" in order to create device group and centralize all my policies rules. I want to manage every rules on Panorama not on local firewall. To be more precise I have many Firewall local policies to expo...

Boya by L1 Bithead
  • 3713 Views
  • 3 replies
  • 0 Likes

Panorama and Firewall Communication

Dear All, I have Panorama hosted in one of the location [where geo graphically separated] abd my Managed firewall are located across the globe. Due to Embargoed few countries I don't have option to establish S2S VPN or any other over lay. So I have left with option plain internet. Question1: What are the communication I could expect from Pa...

Pushing template from Panorama resulting in error

Imported Palo Alto configuration to PanoramaModified BGP configuration..to be precise added "deny" rules under bgp>import>committed changes to PanoramaPushed the modified templates to the same device from where I imported the config. Commit is failing with below errors:Details:. Validation Error:. import -> network -> interface 'sdwa...

Panorama vCenter Plugin - What happens if VMWare vCenter is down?

Hello all, we are using Panorama with VMWare vCenter Plugin v2.1, connected to several vCenters to pull IP information about several VMs to be then used in polices on the firewalls. Now the question came up, what will happen if a vCenter isn't reachable when the sync tries to collect the actual IP mappings? Will the IP-mappings on the firewall...

CEhrl by L0 Member
  • 902 Views
  • 0 replies
  • 0 Likes

Disabled rules on Panorama being pushed to firewall

Hi All, I had a very strange behavior recently on panorama. Disabled rules don't go to firewalls when a push is performed from Panorama, but I had a disabled rule on panorama which got pushed to firewalls. Please find below events in the order they appeared. 1. I had disabled a Security Rule and 2 PBF rules on Panorama and pushed the config...

Will the panorama log collector collect logs if synchronization with firewalls is disabled?

I have a panorama server. System Mode panorama If I set up a log collector and connect firewalls to the panorama, without synchronizing shared policies and templates.Will the panorama log collector collect logs if synchronization with firewalls is disabled? That is, I don’t want to manage firewalls from the panorama at the moment, but I want i...

Panorama 10.1 Rest API - Is there a way to add Static Route directly?

I am trying to add static routes to the PaloAlto device using Panorama REST API, I see we don't have direct option to add the static routes, all that we have to do is to edit the Virtual Router(a bucket where Static route option resides). Unlike RestAPI, Ansible has a option to add the static route directly(validated working). Any option/short...

Security Profile/ URL Filter enable but web site bypass blocking

Hi Platform: PA-440 SW Version: 10.1.8 I created policy and I enabled Actions/Profile settings/URL Filter with customized one, it locks adult content. 1st attempt website like chaturbate.com doesn't lock, in Monitor/URL filter appear blocked but I can browse the web site. 2nd attempt I create an URL filter category with specific web site and i...

How to dissociated Local and Global rule

Hello, I want to know a way to dissociated global rule and local rule, in order to change local rule on a firewall to global rule on the panorama. We think about tagging global rules and make an export of rules without this tag on the Panorama, but I want to know if there is an other way to do it. Thank for your help

Boya by L1 Bithead
  • 1222 Views
  • 2 replies
  • 0 Likes

Resolved! Panorama Log Collector VM Cluster in 'Yellow' Status.

We had some issues with licensing for one of the nodes. We have since rectified this issue (switching to Panorama mode changed serial, licensed and changed back to logger mode). On initial bootup Panorama was reporting log collectors connected and in config sync. However there was a message around 'inter-lc-connectivity' not working. We reboot...

Paul_Stinson_0-1694584415313.png

Panorama XML API Export Device State not generated, resulting error response"Device parameter needed' Instead

Hello everyone, we tried to create a script to export the device-state of all devices (Firewall, Panorama).The API request is https://<device-ip>/api/?type=export&category=device-state. When we tried the request on firewall it generate the .tgz file which is expected, but when we run it on the Panorama Device it resulted the XML respon...

Wishnumurti_0-1707292475814.png
Wishnumurti_1-1707292491984.png

ikev2 site to site VPN to sites with multiple public ip addresses(used for failover)

for a client, i created these many tunnel interfaces for each of their sites. Now, for all these sites, they have 2-3 public ip addresses(for failover purposes). So, will i have to create new tunnel interfaces or should I just create new Ike gateways and ipsec tunnels and point them to the tunnels which I created earlier(shown on the screenshot ...

msdphi_0-1707168908909.png
msdphi by L2 Linker
  • 3152 Views
  • 6 replies
  • 0 Likes

Settings from global-template stack not showing on local pan-template but are showing in the template-stack.

I have configured a global-template on Panorama and added some settings to it such as Netflow, SMTP, SNMP and what have you. I have a template for the local pan called pan-template and a template-stack that contains both global and pan-template with pan-template at the top. The problem I am having is settings from global-template are not showi...

drewdown by L4 Transporter
  • 3105 Views
  • 3 replies
  • 0 Likes

Resolved! reading ARP table on Panorama

Hi,Panorama doesn't have "show arp" command.And there isn't arp information in the tech-support.Can we read ARP table on Panorama?Regards,Tomoyuki Komure

komure by Not applicable
  • 16823 Views
  • 4 replies
  • 0 Likes

Unable to view Panorama Advisory to check for expired certificates remediation.

Currently we use PA-VM and while I have checked Device Management --> Certificates, I am unable to find the Panorama Certificate mentioned in the email alert. The Panorama certificate for managing NGFWs and Log Collectors will expire on April 7, 2024. Please review the advisory at https://live.paloaltonetworks.com/t5/customer-advisories/ad...

  • 845 Posts
  • 47 Subscriptions
Top Solution Authors
View All
Top Liked Posts
View All
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks