After upgrading to 9.1.12-h3 from 9.1.8 the ElasticSearch cluster changed to Red on one the M600 log collectors and to no status shown for the other M600 collector and the logs stopped coming into Panorama.
As of now we are able to export the logs in .csv format. can we export the logs in .log format rather then .csv?
#logs #log
Hello,
I tried to migrate Palo HA FW to Panorama mgmt as per below guideline link, but fail in step 5.5.
this is the step what I did;
I have Panorama VM running in "Panorama mode" on VM ESXi, version 10.1.4
I have configured "managed Collector" to be Panorama, and diskA (which is a 2TB disk) with a "Collector Group" for 1x HA firewalls to send logs to
When i view the logs in P
...
I started with a Panorama (pan mode) VM 9.1.12-h3 and we only had a 200GB virtual logging disk (this was a throwback to when the system was originally built on PAN 4.6). We needed to add more logging space and wanted to add a 2TB virtual logging dis
...
I am trying to create policies in Panorama (9.1.12-h3) using the built-in External dynamic lists (Palo Alto Networks - Bulletproof, Palo Alto Networks - HIgh Risk IP Addresses, etc.) but i do not see them under the destinations in the policy. I can
...
We are unable to see all certificates on api configuration as like on Firewall GUI and CLI.
Taken config from api using below format:
https://firewall IP/api/?type=export&category=configuration&key=api_key
Thanks in advance.
Hello everyone,
I have a question for log traffic and forwarding to syslog server.
I have one panorama that managed a firewall pa-5250 and I see log traffic on two devices.
But when I want to forward it to a syslog, I have to forward panorama's
...
Hello Team,
We are having two panorama's configured in HA. As of now all the traffic is been handled by Primary Panorama and secondary is on handby. Now can we use the secondary panorama for log collection to decrease the CPU on primary?
if so ki
...
I have one template that had most of my default settings that get pushed to all my firewalls.
In this template, I have defined authentication profiles.
I have another template that I am using to push Global Protect Portal/gateway settings to a fir
...
Hi, I did a factory reset and upgraded my PA-220 to 9.1.12-h3. Installed device certificate and licenses. No interface, no policys, just a clean firewall. Connected successfully it to my Panorama 10.1.3-h31 and successfully made an import. When doing
...
When trying to migrate a HA pair of PA 3250's into Panorama 10.1, address objects used for BGP Remote Peers aren't supported. Objects were imported to Panorama Shared location using Device import process.
Address Objects either in a specific Device
...
Do we know if Palo Alto Panorama/5520 Firewalls recognise the "Hide My Ass" VPN application?
I've done a search Objects/Applications but it does not show anything from what i can see.
Thanks
Hi Folks,
We have PA-7000 series firewall configured to forward logs to Panorama.
Recently the firewall stopped forwarding logs to Panorama. In the logrcvr msg we could see the below output. Here the 10.0.2.250 is the Panorama and the 10.0.2.252
...
So apparently I must be missing something. I configured Log Forwarding to send it to my Panorama instance, so that when I click on Monitor I can click and view the logs but apparently none of my logs are showing up in Panorama. They show up find on
...
reaper
on:
how firewall HA (A/P) synchronise when they are managed with panorama and with port data not out of band port
TomYoung
on:
Using API to update Permitted IP Addresses list
PavelK
on:
Commit History Check on Panorama
reaper
on:
SAML for external admin, local admin for internal admin
