This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4919 Views
  • 0 replies
  • 0 Likes

Resolved! Certificate profile is not able to call when shared location is enabled in panorama

Hi Techies, When shared location is enabled, I am not able to call the certificate profile in the EDL. Kindly give me the reason behind this. Because I need to use this EDL for all the location firewalls, so I don't want to do this EDL hosting service for multiple times regards, Akash Thangavel Network Security Engineer

AkashThangavel_0-1688970805935.png
AkashThangavel_0-1688971872517.png

Interfaces lost IPv4 IP

Can anyone clarify whether the source of a device or network configuration (i.e. template/stack or local) could have a [negative] effect on the commit process? My client has recently migrated to a pair of 1400 appliances running PAN-OS 11.0.1. A device group commit shortly after the migration led to a major outage where the active appliance lo...

mb_equate by L3 Networker
  • 2705 Views
  • 3 replies
  • 0 Likes

Possible to copy passwords for OSPF, IKE psk, SNMP auth, etc via cli 'set output' from one template to another?

I want to copy some authentication pieces from one set of templates to another but i do not know what these passwords actually are. In Panorama CLI if I output the config from the template in the 'set' format from one template, edit the template name to the new one and paste it back into panorama. It appears to take the config just fine and s...

scheduled policy export

Hello, on my company we are trying to cleanup several issues we are facing with unused rules, rules that might need to be improved, for this i am currently doing a manual export on panorama for every single firewall but this is time consuming and prone to error (missing one firewall for example)is there a way create a weekly report that will...

Tiago_Sa by L0 Member
  • 1367 Views
  • 0 replies
  • 0 Likes

Panorama fails to commit device group to new firewalls

Hello, We are running 10.1.9-h1 Panorama server that manages multiple PA firewalls. We have imported a new HA pair of PA-450s and a new HA pair of PA-3220 firewalls The PA-3220 firewalls are in a template and device group configuration and when committing to the firewalls from Panorama to the PA-3220s for the first time, the template pushe...

Management of palo alto vms for DR solution in Azure for different regions via Panorama

Hi All, Currently, in our organization we are using Transit Vnet Model and utilizing hub & spoke concept in Azure Cloud. We have different set of firewalls which are filtering East-West & North-South direction traffic respectively in Azure. This setup is available only in one region (East US) of Azure. If something goes wrong in that r...

Resolved! Do Panorama-created Pre-Rules still work if Panorama goes down?

Hi Community, I have a newer implementation of Panorama and saw on the Palo Alto subreddit that if Panorama goes down, all the Pre- and Post-Rules will not work and only Local rules on the firewalls will apply. I thought that when you create policies in Pre-Rules on Panorama and then push them to devices, that they now exist on the device's ...

MDroyKT by L2 Linker
  • 2774 Views
  • 2 replies
  • 0 Likes

Resolved! Panorama M-200 device displaying old committed items that needed to be pushed

Good day everyone, I have another inquiry but this time for Panorama, so here's how it went. We have a Panorama M-200 that is on 10.2.4, we are experiencing some problem when it comes to push to device. The aforementioned steps below temporarily fixed the problem, but when there is a new configuration that needed to be committed and pushed, th...

Resolved! Log Forwarding of Traffic Logs to External Syslog server

Hi, we have firewalls configured to send their logs to Panorama Log Collectors and now want to forward the logs from there to a new Splunk server. We have configured the Log Collectors to forward certain log types (e.g. system, threat, traffic, url) to the Splunk server but in Splunk we only see the system logs and not the traffic logs.

New Panorama VM 10.1.0 stuck in maintenance mode

We are trying to deploy new Panorama VM base image 10.1.9 and while booting it is going into maintenance mode directly. We are unable to pass maintenance mode even after reboot, reset, rollback. We verified prerequisites which are configured correctly. Kindly assist.

kandaspr by L1 Bithead
  • 2908 Views
  • 1 replies
  • 0 Likes

Change hostnames of devices being managed by Panorama

I want to change the hostnames of an HA pair that is being managed by Panorama. When I go to Panorama > Device I see the hostnames I want to change there. Are those being pulled from the hosts themselves? If so can I just change them on each FW and be done? Or do I need to do it from PANORAMA? I don't use templates even though it seems...

drewdown by L4 Transporter
  • 3058 Views
  • 1 replies
  • 0 Likes

Forward logs from firewalls to Panorama and from Panorama to external services

Hi, I planning to forward the Panorama logs to azure sentinel, while I have log collector configured to log to Panorama. I found a document that specifies that it not possible "A Panorama virtual appliance running Panorama 6.0 or later releases, and M-Series appliances running any release, do not support these options because the log databas...

  • 854 Posts
  • 47 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks