This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4878 Views
  • 0 replies
  • 0 Likes

Data Redistribution Agent - system log message

Hi,In our Panorama system log I see a lot of logs giving the output shown below: Event: connect-agent-failure )Description: 'Redistribution Agent "data redistribution agent id"(vsys1): details: close connection to agent' I see this messages are coming in from all our firewalls and it started around 18 months ago.I tried to look through some docu...

Move Firewall from one Hierarchy device group/template to another hierarchy device group/template in panorama

Hi All, I want to move firewall(FW1) from one Hierarchy device group/template to another hierarchy device group/template in panorama. I Want to add destination device group default rulebase and remove source device group default rulebase . However local firewall rulebase should be retain   . Please help with best approach to achieve these .

Setup-Requirement.jpg

評価版Panorama VMのみのプロビジョニングについて

パートナーさまにて評価版Panorama VMのみをご検証される際に 新規CSPにNGFWクレジットを紐づけようと考えております。 新規CSP作成時に選択する項目や入力する値はどのようなものになるかご教授いただけますと幸いです。 過去に下記URLでプロビジョニング手順はご案内いただいております。 https://live.paloaltonetworks.com/t5/asc-discussion-forum/how-to-create-a-trial-version-of-panorama-vm/m-p/1240427#M77 %MCEPASTEBIN%02ました。 過去に下記URLでプロビジョニング手順はご案内いただきました。 https://live.paloalt...

MEbata_0-1764553124169.png
M.Ebata by L1 Bithead
  • 1534 Views
  • 0 replies
  • 0 Likes

Error: Duplicate address/external-ip-list name 'panw-known-ip-list'

I have added a new device to Panorama and when committing I see this error: Details:. Error: Duplicate address/external-ip-list name 'panw-known-ip-list'. (Module: device). client device phase 1 failure. Commit failed. Local configuration size: 65 KB. Predefined configuration size: 20 MB This is a built-in object, so I'm unable to modify or de...

ET by L3 Networker
  • 2216 Views
  • 0 replies
  • 0 Likes

Few Objects are missing on firewall while Migrate a Multi-vSYS enabled Firewall HA Pair to Panorama Management

Hi Palo Alto Team and Community, I am experiencing an issue while migrating a Multi-vSYS enabled Firewall HA pair to Panorama management. All objects appear correctly in Panorama; however, some objects are missing on the firewall after pushing the configuration. For example: Panorama shows: ~5000 objects Firewall shows: ~4500 objects I h...

Al-Amin by L2 Linker
  • 5655 Views
  • 2 replies
  • 0 Likes

Preferred SW Version for 11.2.5 and up

We updated our Panorama and Firewalls to the 11.2.5 version to remediate a CVE and have been waiting and waiting for a preferred version but they have not released a preferred version that we can upgrade to. Does anyone know if and when there will be a preferred version that we could upgrade too?

Panorama API Log Queries limit

Hello, I am using a python code that queries logs from Panorama using API (Job is created to query the last 1000 logs--> Logs downloaded --> finish the job on panorama --> wait 10 seconds --> Repeat) I aim to keep it running continuously for some days, is that safe? I have left it for 24 hours and found that the code has created more...

Resolved! Connecting back to Panorama

Hi, We have multiple site connected to central Panorama. Due to some issue we were not able to connect to Panorama. At the same tie we have to do some Policy changes on Local Firewall. These Firewalls are in Active/standby setup. To make change in Policy I had to "disable Panorama Policy and object" I also disabled the sync from primary to s...

MPFirewall_1-1760559853955.png

Import Device configuration into Panorama, Device window is blank

Trying to import HA pair into Panorama, follow the docs on importing configuration into panorama (Migrate a Firewall to Panorama Management (paloaltonetworks.com)) Follow steps 1 -3 and all fine at step 4 where it says ' "From Panorama, select Panorama >Setup>Operations, click Import device configuration to Panorama, and select the Device...

PaulTowns_0-1702396643774.png
PaulTowns_1-1702396794737.png

failed to generate selective push

Hello, I'm struggling with the integration of new devices, after many tries, I finally removed the new devices, but 2 of the other firewall can't commit anymore : when I try to push to devices, I've got the following error "Failed to generate selective push configuration. Last in-sync configuration for the device is from a different version, s...

Resolved! Process to Rebuild Panorama with Prisma Access & Prisma SDWAN

Posting here while waiting for TAC. We use Panorama to manage NGFW and Prisma Access with Prisma SDWAN integration. We recently rebuilt Panorama Azure VM. Latest dynamic updates and plugins are installed, device cert is valid, and cloud services OTP applied. We tried loading the old Panorama running config to get everything back to normal. Ho...

service certificate push from panorama to managed firewalls eg: vpn

Hi folks, We have panorama and few pairs to managed firewalls being managed by panorama, Under the Templates, created CSR and imported the signed CA and pushed it to specific template firewall(say FW01-active), the managed firewall local configurations displays the new certificate, however, on the FW02-passive one the certificate did not sync....

PAN-OS 10.1 with VMWare ESXi 8.0

Hi everyone, Would it be okay to upgrade our VMWare ESXi version to 8.0 even while remaining on PAN-OS version 10.1? We didn't renew our panorama license as we have moved all but a couple firewalls over to StrataCloudManager. Thank you!

  • 847 Posts
  • 47 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks