Panorama sessions in ACC view show much higher session counts than the session count on the firewall

Hi all, a bit of a mystery one here. can anyone explain this?

For example, "show session info" on the firewall cli and Dashboard GUI currently shows about 

but in Panorama under ACC

We're showing more like 500,000 connections!?!?!?

Can anyone e

Panorama Log collector

Hello,

I would like to know on a single log collector can you set up several profiles that send the logs to different servers depending on the source of the logs? 

We have several Firewall clusters on the panorama and we want to be able to send t

Unable to Add URL-Based External Dynamic List as Destination in Policy-Based Forwarding Rule on Panorama

I am attempting to use an External Dynamic List (EDL) with a URL-based list as the destination in a Policy-Based Forwarding (PBF) rule on Panorama. However, when I try to add the EDL as the destination in the PBF rule, I am not able to see the URL-ba

error: certfile should be a valid filesystem path

Hi Team,

I am trying to automate palo alto version 10.2.3-h2. Initially I tried to use Ansible: palo_security_rule module to push a security rule to palo alto, but I got error "hip_profiles unexpected here". The workaround for this error as looked up

Update steps RMA Replacement Firewall for case 2: Old device is still connected to the network and firewall is managed from panorama:

The following KB missing steps for version 10.1 as authentication key had introduce for this version onward

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Clkn

Based on case 2 : 
if follow the steps provided the replaced

clean up unused objects within Panorama using expedition?

hello all,

PA newb here. I recently transitioned to a firewall admin job and am learning my way around Palo Alto for the first time. one issue I've been tasked with exploring is an issue where one of our firewalls has fallen out of sync because it is

configd zombie process

Hi Team,

We are facing slowness issue with our Panorama and while troubleshooting we found that there is Zombie process for configd.

Could you please let us know if that is causing the slowness.

Regards,

Umesh Kumar

Configure existing Production Panorama template used for Policies/Objects, but not Interfaces/Zones for SD WAN

When we started using the Panorama many years ago, we did so using the templates as an after thought of manually configuring each firewall. We are a small company so it wasn't difficult, but now we want to entertain SD WAN and my understanding is it

ARP spoofing solution

Looking for a solution for ARP spoofing within a network to protect against MiM attacks. Our security team has asked us to implement such a solution after performing successful MiM ARP spoofing within a segment, simulating a compromised host. 

All ne

backing up running-config.xml or set cli config-output-format set

Hi all

very basic question however im unable to find a search function here ?? 

is there a way i can scp the runing-config.xml from the firewall. NOT export from the firewall

basically im trying to scp the running-config.xml however im unable to fi

Panorama Logging in AWS - Different Volume Types

According to the support documentation on implementing Panorama in AWS and attaching a virtual disk, the instructions indicate that we should use the GP2 volume type for general purposes. Here 

We're wanting to evaluate whether Panorama Logging sup