This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4910 Views
  • 0 replies
  • 0 Likes

Issue Updating Local Administrator Passwords via Panorama - Seeking Community Assistance

Greetings Community Members, I'm currently facing a challenge while attempting to update the local administrator passwords from Panorama and then pushing the changes to our firewalls. The process involves modifying the password by selecting a device template, select the administrators, and update the password. Subsequently, I commit the change...

Resolved! pan-os-python trying to pull list of security polices from panorama using a specific device group

# This defines how we will connect to panorama mypanorama = panorama.Panorama(device, api_key=auth_key) # This defines the device group we will be connecting to palo_device_group = panorama.DeviceGroup(devicegroup) mypanorama.add(palo_device_group) rulebase = PreRulebase palo_device_group.add(rulebase) existing_policies = SecurityRule.refreshal...

DAG Match criteria VMware Plugin not populating

HelloI just setup the VMware plugin to gain some match criteria for Dynamic Groups (DAG). Connection to Vcenter is successful and Monitoring Jobs also report successful. Nevertheless I see no information in IP-Tag log (assuming it should show there) and also no vmware-match criteria are available Is there a log to check or another way to verify,...

Import devices configuration into Panorama stucked at 99% since last 48 hours

We are import PA5220 firewall backup ( selecting import shared object) into Panorama VM , but stucked at 99% since last 48 hours. If we unselect import shared object , job is completing in minutes. But while selecting shared object option its taking time.There are 16000 objects in PA5220 firewall. What could be the reason for slowness in import...

Deepak_K by L3 Networker
  • 6850 Views
  • 6 replies
  • 1 Likes

Resolved! TAP or Vitual Wire interface?

Which interface type allows you to control traffic with the least disruption to a network? As per the Palo Alto Networks Study guide its saying as Virutal Wire, where as when searched in Chat GPT and web its showing as TAP. Can someone suggest which one is the correct answer? Web Image: As per Palo Alto Study Guide:Domain 6: Thank you.

RSJ_141027_0-1704352439403.png
RSJ_141027_1-1704352469337.png

Generate certificates in templates with cli

Hi everyone, i know that i can generate certificates on the panorama itself with the command: request certificate generate ca no signed-by myCA digest sha512 days-till-expiry 365 countrycode DE organization "My Org" hostname [ hostname hostname.mydomain ] name hostname.mydomain certificate-name myCert algorithm RSA rsa-nbits 4096 but as th...

Resolved! Adding new devices to Panorama

Hi I need to add new pair of devices (PA 3220) as HA active/passive mode which will be replacing the existing PA 3060 HA cluster which is in production. I am going to use the same device group, but I would like to rename the template and utilize the same parameters as the original. I was thinking about cloning the template and pushing that to ...

Amin2 by L2 Linker
  • 4215 Views
  • 2 replies
  • 0 Likes

Rejoin a factory default PA firewall to HA which managed by Panorama

Hi all I have a HA PA pair which managed by Panorama in our environment, and we found the passive one is unable to login locally, and cannot commit new configuration to the passive one thru Panorama. So we do factory default of the passive one and configure the management IP and admin user again. After we do factory default, we joined the HA...

alex by L0 Member
  • 1682 Views
  • 1 replies
  • 0 Likes

Green Horizontal Bar in PanOS 10.1 GUI

I just started noticing this horizontal green bar appearing between the yellow and blue fields on the header in PanOS 10.1. Does this mean anything? It's not present all the time. The red dot in the screenshot was accidentally painted on by the snipping tool.

PanoramaGreen.PNG

Panorama SD-WAN Devices Import CSV brings error "Unspecified error during import"

Hy, I try to import SD-WAN Devices by CSV to Panorama (11.0.3) SD-WAN Plugin (3.1.0) this brings the error message "Unspecified error during import" csv: device-serial,type,site,zone-internet,zone-to-hub,zone-to-branch,zone-internal,router-id,as-number,loopback-address,prefix-redistribute,vr-name,vif-link-tag,remove-private-as,copy-tos-header...

paSAXA_0-1703069484366.png
paSAXA by L0 Member
  • 740 Views
  • 0 replies
  • 0 Likes

Panorama HA Two different Data Center

Dear Folks, I want to setup Panorma High availability between two different data centers [Netherland-Germany] I have checked the latecny is allowed upto 1000 ms. I have some following doubts. 1. since these DC's running different Ip address spce so for HA communication between these peers have two different Ip address, is not an constrains?...

ZTP configuration at remote sites

We have some new PA-440's are are trying to work through the ZTP process. We have ZTP configured, and the devices are registered. We now see them as connected to our Panorama server, but we are unsure of the next step. We can't seem to make some changes to do the devices as they are still in ZTP mode, but the documentation to turn ZTP off...

RHuss1 by L1 Bithead
  • 2518 Views
  • 1 replies
  • 0 Likes
  • 853 Posts
  • 47 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks