This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4918 Views
  • 0 replies
  • 0 Likes

Panorama after rebooting didn't come up

Hi, After rebooting panorama, it didn't come up , also we are not able to commit after making changes, the committ status will stuck at 99%. Also we need to add more controls to Panorama. We need to do it immediately , Can we get one engineer to call immediately , support portal is down and this has to be case. Please share us Zoom link

IPSEC AND INTERNET TRAFFICE DISTRUTION

Dear Team, IPSEC AND INTERNET TRAFFICE DISTRUTION We have added 1 more ISP at our side and the same has been configured on the firewall, means now we have 2 ISP configured, we shall consider the OLD ISP as 1st ISP and NEW ISP as 2nd ISP. Presently we have configured GLOBAL PROTECT,IPSEC TRAFFIC and INTERENET BROWSING on 1st ISP. now our new re...

IS-Admin by L0 Member
  • 895 Views
  • 1 replies
  • 0 Likes

Palo Alto Panorama XML/REST API Permissions 10.2 vs previous versions

recently upgraded to 10.2, previously API permissions for the rest API and the XML api have been grouped together. But since upgrading to 10.2, we see these permissions are separated: I only want the permissions applied that were previously required for Logging when the XML/REST API permissions were grouped together. Since upgrading all ...

MicrosoftTeams-image (39) (1)[8].png
MicrosoftTeams-image (40) (1)[9].jpeg
MicrosoftTeams-image (41) (1)[47].png

Options for viewing Firewalls with Overrides in place

I recently ran across Panorama managed firewalls that have overrides in place for HA configurations. This must have occurred during deployment and were never removed before they went into production. Is there any way to view local firewall overrides from Panorama? Just trying to find a more efficient method than manually checking each firewal...

Query firewall configuration from Panorama using the REST API

Is there a way to proxy API query over Panorama to a managed firewall using the REST API? This is possible in the XML API using something similar, however I am now building an application using the REST and it will not be ideal, if mixed with the XML API: "https://<panorama>/api/?type=op&cmd=<request><system><softwar...

batd2 by L4 Transporter
  • 1189 Views
  • 0 replies
  • 0 Likes

Validation error while pushing config in panorama

Previously, we had perform upgrade activity on the PA-5220 from version 9.1.14-h1 to version 10.1.11. After few days we try to make some changes and push from panorama. Then we encounter this error(kindly refer the attached image): deviceconfig->system->update-schedule->wildfire->recurring->sync-to-peer unexpected here devicecon...

After removal firewall from Panorama it cannot register anymore to other Panorama instances

I had a small POC with SD-WAN on PA-410 units and Panorama in management mode. Once it was done, configuration was deleted, and it acted just as a regular firewall, so I have decided later to remove it at all from Panorama. Just as a regular step removed IP, disabled policy and objects and device and network templates. Now as I need to test some...

MarcinJ by L1 Bithead
  • 2520 Views
  • 2 replies
  • 0 Likes

Resolved! Late update URL Filtering on Panorama GUI

Any solution of URL Filtering version on GUI not updating to last update. On Panorama GUI, URL Filtering version about 30-60 minutes late. Im using Panorama 10.1.6 and the Palo Alto is 10.1.6-h6 Thank you  Regards, Rival

panorama url filtering not update.png
rivalk by L0 Member
  • 1972 Views
  • 1 replies
  • 0 Likes

Revert specific changes made by a user in Panorama via ansible

Hi Team,I am looking for an ansible solution to revert only specific uncommitted changes made by user in Panorama. For eg: if a user created an security policy and a nat rule, I want to revert that specific nat rule creation not the security policy. If it is possible using xpath or any other way. Also is there any way to revert changes via a ses...

paloansi by L0 Member
  • 1152 Views
  • 1 replies
  • 0 Likes

PAN-OS Xpath

Hi all, Is it possible to retrieve info for security profiles and policies using XPath on Panorama-managed firewalls? As of now, I am able to retrieve this info via panorama xml api/xpath, but not through the firewall directly. The security policies and profiles can be viewed, directly on the firewall's GUI, but it appears empty when using XPath...

Resolved! Push to Devices from Panorama is not working

Push to Devices from Panorama is not working when we make changes in the objects tab of any device groups belong to the firewalls managed by panorama. in other words, after making changes in the objects tab , we are able to commit to panorama but couldn't push it to the devices as commit is not triggered to the firewalls from panorama. Could ...

perumalj by L2 Linker
  • 5324 Views
  • 2 replies
  • 0 Likes

Resolved! Can't see firewall logs in Panorama

Hi, New to all things Palo Alto after coming from Cisco ASA and Firepower. I've been ask to set 2 Palo alto Firewall in HA, this has been successful. Added them to Panorama which appear to be successful and configure the Palo Altos to send logs to Panorama, on the Palo Alto under objects>Log forwarding> Created a profile and ticked t...

Suspicious VPN log in attempts - do you guys also get this?

We don't have users in Switzerland / Netherlands, but I can see consistent log in attempts from the GlobalProtect logs. I know the true locations is masked, but this is a persistent thing, wondering if you guys also get this? I've geo-blocked suspicious regions already, but these log ins still visible, maybe my policy is not working right. ...

RandyMeng_0-1698866278406.png

Resolved! Error: Failed to get policy objects: NO_MATCHES(Module: useridd)

HiiiiiI just created Device groups and pushed to devices. Only "PA-445_1" this devices received the following error message.Error: Failed to get policy objects: NO_MATCHES(Module: useridd)Dose anyone encountered this problem??? How to solve it. Thankkk!! The architecture is that Panorama manages 2 PA-445s. Each PA-445 is divided into vsys1 and...

qq.jpg
11.jpg
SunnyHu by L0 Member
  • 2212 Views
  • 2 replies
  • 0 Likes
  • 854 Posts
  • 47 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks