Gemini (formally Bard) App-ID news.

Since the artificial intelligence tool Bard is now Gemini. Has there been any news on when they will switch and ad an App-ID for Gemini? I know for ChatGPT and Bard they were quite quick to add them. Surprising they haven't given the popularity of Artificial Intelligence and the utilization has only gone up.

Palo Alto Panorama All wildfire logs have the same hash value. What's the problem?

Auto Renewal for Certificates?

Hello,I wanted to see if there was a way to set up "Auto Renewal" for our certificates for GlobalProtect? Not sure if this is even an option or not. Right now, we manually renew and import/export the certificate.

Panorama and Firewall Communication

Dear All, I have Panorama hosted in one of the location [where geo graphically separated] abd my Managed firewall are located across the globe. Due to Embargoed few countries I don't have option to establish S2S VPN or any other over lay. So I have left with option plain internet. Question1: What are the communication I could expect from Pa...

Pushing template from Panorama resulting in error

Imported Palo Alto configuration to PanoramaModified BGP configuration..to be precise added "deny" rules under bgp>import>committed changes to PanoramaPushed the modified templates to the same device from where I imported the config. Commit is failing with below errors:Details:. Validation Error:. import -> network -> interface 'sdwa...

Panorama vCenter Plugin - What happens if VMWare vCenter is down?

Hello all, we are using Panorama with VMWare vCenter Plugin v2.1, connected to several vCenters to pull IP information about several VMs to be then used in polices on the firewalls. Now the question came up, what will happen if a vCenter isn't reachable when the sync tries to collect the actual IP mappings? Will the IP-mappings on the firewall...

Disabled rules on Panorama being pushed to firewall

Hi All, I had a very strange behavior recently on panorama. Disabled rules don't go to firewalls when a push is performed from Panorama, but I had a disabled rule on panorama which got pushed to firewalls. Please find below events in the order they appeared. 1. I had disabled a Security Rule and 2 PBF rules on Panorama and pushed the config...

Will the panorama log collector collect logs if synchronization with firewalls is disabled?

I have a panorama server. System Mode panorama If I set up a log collector and connect firewalls to the panorama, without synchronizing shared policies and templates.Will the panorama log collector collect logs if synchronization with firewalls is disabled? That is, I don’t want to manage firewalls from the panorama at the moment, but I want i...

Panorama 10.1 Rest API - Is there a way to add Static Route directly?

I am trying to add static routes to the PaloAlto device using Panorama REST API, I see we don't have direct option to add the static routes, all that we have to do is to edit the Virtual Router(a bucket where Static route option resides). Unlike RestAPI, Ansible has a option to add the static route directly(validated working). Any option/short...

Security Profile/ URL Filter enable but web site bypass blocking

Hi Platform: PA-440 SW Version: 10.1.8 I created policy and I enabled Actions/Profile settings/URL Filter with customized one, it locks adult content. 1st attempt website like chaturbate.com doesn't lock, in Monitor/URL filter appear blocked but I can browse the web site. 2nd attempt I create an URL filter category with specific web site and i...

How to dissociated Local and Global rule

Hello, I want to know a way to dissociated global rule and local rule, in order to change local rule on a firewall to global rule on the panorama. We think about tagging global rules and make an export of rules without this tag on the Panorama, but I want to know if there is an other way to do it. Thank for your help

Panorama XML API Export Device State not generated, resulting error response"Device parameter needed' Instead

Hello everyone, we tried to create a script to export the device-state of all devices (Firewall, Panorama).The API request is https://<device-ip>/api/?type=export&category=device-state. When we tried the request on firewall it generate the .tgz file which is expected, but when we run it on the Panorama Device it resulted the XML respon...

ikev2 site to site VPN to sites with multiple public ip addresses(used for failover)

for a client, i created these many tunnel interfaces for each of their sites. Now, for all these sites, they have 2-3 public ip addresses(for failover purposes). So, will i have to create new tunnel interfaces or should I just create new Ike gateways and ipsec tunnels and point them to the tunnels which I created earlier(shown on the screenshot ...