Panorama System Logs

Very short retention period for Panorama system logs. Panorama is in Management-Only, but the system logs for Panorama only go back 6 days. We have dedicated log collectors that should be handling the firewall logs. below is the output of 

show sys

i want open case

the device is located behind an upstream NAT device and i enable sdwan in sub interfaces

but i can not find upstream nat box to put the real ip

if i enable sdwan in physical interface upstream nat box appear

Email Alert when enable or disable existing policy

Hi ,

We’ve Palo Alto Firewalls managed by Panorama. We want to configure email alert from Palo Alto but we don’t want to receive every configuration logs. We only want to receive notification by email when we enable or disable existing firewall rules

New firewall added to panorama, no backups

I added a new firewall to panorama, panorama shows the firewall as 'connected' and 'valid', and when I go to manage backups, it lists several backups, and the timestamps are correct, but each backup only shows 'false' in the popup window.  do i have

Bulk add IP addresses to object groups in Panorama

Hello, 

I have several IP addresses I need to add to an existing Object group and I keep reading you can do either CSV import or use CLI. 
Does anyone know the best way to do this since we are using Panorama to manage other firewalls? 

Thank you, 

errores cuando realizo commit en consola panorama

Buenos dias,

Me encuentro realizando una arquitectura de preproducción con una consola de panorama virtual y firewall virtualizados. El problema es que a la hora de realizar "commit" en la consola panorama, me encuentro con los siguientes errores:

How to proactively monitor which firewalls stopped sending logs to panorama.

Panorama is our log collector and all firewalls reporting to panorama forward the logs to panorama too.

However at times these logs stopped reaching panorama ( break due to several reasons ) and we end up finding them after a long time. This is causi

Instance type for panorama in AWS

Hi Team,

We are planning to deploy Panorama in (Panoroma mode) AWS for 2 firewall. The recommended instance type is  c5.4xlarge (16vCPU) which is costly for us. Is there any issue anyone observed if we use other instance type of having little resou

Unable to configure static route for aggregate interfaces in logical router of Panorama GUI

Hi Team,

PA-7050 firewall and PanOS version - 10.2.2-h2

Panorama M-600 and PanOS version 10.2.2-h2

We couldn't configure the static route with aggregate interfaces in the GUI using the logical routers in Panorama. In the logical routers drop-down

PANORAMA UNRESPONSIVE OR CANNOT LOG IN AFTER PAN-OS REBOOT

Issue : Panorama is Unresponsive or you cannot log in After PAN-OS Reboot. (PanOS 10.1.1)

Primary Troubleshooting: 1. Restarted mgmtsrver process through console access....but it didn't worked.

                                         2. Again rebo

Disable Command CLI through Panorama

How to disable policy of local firewall through panorama.

I want to do it ia cli...can any one tell mee command to disable firewall policy of a device group via panorama 

Palo 10.1 look and feel?

Is it possible to make Panorama 10.1 look and feel like 9.1?  I find the colors and fonts used in 10.1 harder to read.

Identify Panorama Template Overrides on Firewalls

I have a scenario where we have 70 firewalls, in HA pairs, managed by Panorama.

Templates are set up, and pushed to the firewalls, but *some* of the firewalls have template overrides set for various things.

I am looking for a good way to identify, whit

Final Stack / Template setup after migrating HA Pair.

Hi,

I am following the pan admin guide below to onboard a production HA pair.  

https://docs.paloaltonetworks.com/panorama/10-2/panorama-admin/manage-firewalls/transition-a-firewall-to-panorama-management/migrate-a-firewall-ha-pair-to-panorama-mana