Panorama Discussions

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Is there any way i can upgrade PAN -OS via CLI?

Is there any way i can upgrade PAN -OS via CLI?.

Item added to URL Category in Panorama but not showing on individual devices

Hi!

I have entered a new URL to whitelist in the correct URL category in Panorama (91 items showing in the category). I then committed and pushed but the new entry is not showing on any of my individual devices (90 items showing in the category).

...

Community Expert Verified

Resolved! Panorama Serial Number Change (unable to) As log collector is using different Serial Number

Hi Community,

I have this situation where I’m unable to change serial number on Panorama VM to upload license. The reason I am unable to change serial number via dashboard is because the Log collector configured locally is using a different serial n

...

Resolved! Certificate profile is not able to call when shared location is enabled in panorama

Hi Techies,

When shared location is enabled, I am not able to call the certificate profile in the EDL. Kindly give me the reason behind this. Because I need to use this EDL for all the location firewalls, so I don't want to do this EDL hosting serv

...

Getting error when login

i need to download Panorama for my product pa-440

ModelPA-440Serial #021201021527Software Version10.1.3

Interfaces lost IPv4 IP

Can anyone clarify whether the source of a device or network configuration (i.e. template/stack or local) could have a [negative] effect on the commit process?

My client has recently migrated to a pair of 1400 appliances running PAN-OS 11.0.1. A de

...

Possible to copy passwords for OSPF, IKE psk, SNMP auth, etc via cli 'set output' from one template to another?

I want to copy some authentication pieces from one set of templates to another but i do not know what these passwords actually are.

In Panorama CLI if I output the config from the template in the 'set' format from one template, edit the template n

...

scheduled policy export

Hello,

on my company we are trying to cleanup several issues we are facing with unused rules, rules that might need to be improved,

for this i am currently doing a manual export on panorama for every single firewall but this is time consuming and

...

Resolved! Panorama >> Device Deployment >> Dynamic Updates versus Device >> Dynamic Updates

Is the main difference between these two sections the location from which the updates come from? That means that Panorama >> Device Deployment >> Dynamic Updates pushes from Panorama directly, whereas the Device >> Dynamic Updates pulls it from Pa

...

Panorama fails to commit device group to new firewalls

Hello,

We are running 10.1.9-h1 Panorama server that manages multiple PA firewalls.

We have imported a new HA pair of PA-450s and a new HA pair of PA-3220 firewalls

The PA-3220 firewalls are in a template and device group configuration and when

...

Resolved! Trying to add a external IP on whitelist and modifying existing policy but it was on read only mode in panorama

Trying to add a external IP on whitelist and modifying existing policy but it was on read only mode in panorama as well as going into specific site the policy was on read mode only.

I see this both on panorama global settings as well as going into

...

Management of palo alto vms for DR solution in Azure for different regions via Panorama

Hi All,

Currently, in our organization we are using Transit Vnet Model and utilizing hub & spoke concept in Azure Cloud. We have different set of firewalls which are filtering East-West & North-South direction traffic respectively in Azure. This se

...

Resolved! Do Panorama-created Pre-Rules still work if Panorama goes down?

Hi Community,

I have a newer implementation of Panorama and saw on the Palo Alto subreddit that if Panorama goes down, all the Pre- and Post-Rules will not work and only Local rules on the firewalls will apply.

I thought that when you create poli

...

Resolved! Panorama M-200 device displaying old committed items that needed to be pushed

Good day everyone,

I have another inquiry but this time for Panorama, so here's how it went. We have a Panorama M-200 that is on 10.2.4, we are experiencing some problem when it comes to push to device. The aforementioned steps below temporarily fi

...

Resolved! Log Forwarding of Traffic Logs to External Syslog server

Hi, we have firewalls configured to send their logs to Panorama Log Collectors and now want to forward the logs from there to a new Splunk server. We have configured the Log Collectors to forward certain log types (e.g. system, threat, traffic, url)

...

Discussions

Welcome to the Panorama Discussions!

Rules and Best Practices

Is there any way i can upgrade PAN -OS via CLI?

Item added to URL Category in Panorama but not showing on individual devices

Resolved! Panorama Serial Number Change (unable to) As log collector is using different Serial Number

Resolved! Certificate profile is not able to call when shared location is enabled in panorama

Getting error when login

Interfaces lost IPv4 IP

Possible to copy passwords for OSPF, IKE psk, SNMP auth, etc via cli 'set output' from one template to another?

scheduled policy export

Resolved! Panorama >> Device Deployment >> Dynamic Updates versus Device >> Dynamic Updates

Panorama fails to commit device group to new firewalls

Resolved! Trying to add a external IP on whitelist and modifying existing policy but it was on read only mode in panorama

Management of palo alto vms for DR solution in Azure for different regions via Panorama

Resolved! Do Panorama-created Pre-Rules still work if Panorama goes down?

Resolved! Panorama M-200 device displaying old committed items that needed to be pushed

Resolved! Log Forwarding of Traffic Logs to External Syslog server

Usergroup

Palo Alto M700 power failure LED

Upgrade to 11.1.4-h1 for both Panorama and managed firewalls

CVE-2024-3393 - Panorama Patch

NGFW dont send logs to Panorama device

Re: All committed entries with commit version < 3434 have been cleaned up from the replay database.

Re: Panorama - SAML SSO with ADFS error

Re: 2FA for Panorama

Re: Pre-load software

Re: Copy settings from one template to a new another template

Unlock your full community experience!

Panorama Discussions

Rules and Best Practices

Resolved! Panorama Serial Number Change (unable to) As log collector is using different Serial Number

Resolved! Certificate profile is not able to call when shared location is enabled in panorama

Resolved! Panorama >> Device Deployment >> Dynamic Updates versus Device >> Dynamic Updates

Resolved! Trying to add a external IP on whitelist and modifying existing policy but it was on read only mode in panorama

Resolved! Do Panorama-created Pre-Rules still work if Panorama goes down?

Resolved! Panorama M-200 device displaying old committed items that needed to be pushed

Resolved! Log Forwarding of Traffic Logs to External Syslog server