Assistance with Design of Palo Alto Firewalls & Panorama

Hello All,

I have attached network topology based on Fortigate firewalls which needs to be migrated to Palo Alto on all 3 sites, Plus I Want to use PANOS SDWAN with Panorama as well, Brief description of network is 

- HO site will have 2 x PA 1410

Panorama and Paloalto Firewall Communication

Dear Folks, 

I have firewall and Panorama in a large scale deployment. I would like to understand the process and procedure Device Certificate,

As per project plan we are going to deploy Panorama first following deployment of local managed firewall

Need help in setting up a basic lab

I am a complete beginner new to Palo Alto. I have a lab setup with Palo Alto management IP 192.168.1.51 and a windows server 2022 machine with IP 192.168.1.57. I want to create a rule on Palo Alto firewall to stop the internet access to the server. T

Getting system alert-high for Wildfire update failure, failed to extract file

This is occurring on our Panorama.  Content of email alert is:

Type: SYSTEM
Subtype: general
Time: Apr 07 2022 00:12:55 GMT
Severity: high
Details: "Failed to extract file panupv3-all-wildfire-652605-655839.tgz with sha256: 647eedc7698709983f5e9d99dc0428

How to delete tags in Panorama from CLI ?

Hi all

I have an issue and i need your help.

I need to delete tags like "FQDN" from Panorama from the CLI.

When i issue this command below i have an error message:

command :  delete shared tag FQDN

Response : Object doesn't exis

What did i miss?

Why do all my Panorama security rules have the same "Modified" date and time?

In the NGFW, under Policies > Security, there is a "Modified" field.
It usually shows the date and time the Security Rule was modified.
I don't see any modifications to the group objects in the security rule that would allow duplicate use.
However, the

m500 to m700 migration

Has any attempted to migrate from an M500 Panorama to an M700? Palo support documents seem to indicate that there is a gap in support between the two hardware models. M500 final code release 10.1 and M700 initial code release 10.2.

matrix link Pa

Seconday Passive ES Health Red master_not_discovered_exception

I have two Panorama servers 11.0.1-h2 in HA. Both are in Panorama mode and have 3x Disks (2TB each). Logs are really slow to view on the Active-Primary and never load on the Secondary. When diagnosing I came across this error on the secondary:

Unable to commit Panorama stack template

Hi All,

When pushing Panorama stack template configuration to devices i encounter error message as per below. Verified no Masterkey was in use. Please advise.

Operation Commit All

Status Completed

Result Failed

Details Validation Error:

devic

Can I send a command via ssh in Panorama ?

Can I do the following ?
ssh xxx@panorama  "show system info"

thanks !!

Can't RDP from Mac to Windows Jump Server

Dear Community Members,

I'm facing a strange issue. I use 2 machines related to my work. One is a Windows Laptop and another one is a Macbook. 

We have a server, which acts as a Jump Box. We use Global Protect VPN for connecting to that JumpServe

Panorama unused policies query

I am not a programmer or developer, so forgive me if this is a stupid question.  Is there a way to query Panorama to retrieve an aggregate list of unused policies across all device groups with a created date over one year old?  I've looked through th

API: how to iterate to get logs page by page?

I am trying to retrieve large amounts of logs from panorama via the api.  

The log api uses an asynchronous API.  I have the initial request which includes the search criteria  and returns the `jobid` working and can get the first batch of logs bac