My struggles with panorama

Sometimes I feel Panorama is a great tool, sometimes I rather manage firewalls locally and just API for mass pushes and deployments.

I had a firewall that was overridden in a few places and wanted to get this back in sync with panorama. So I follow

Security rules in Active Passive Panorama

Hi There, 

I have two A/A firewall pairs in Primary Azure locations (WEU) and two A/A firewall pair in DR azure location(NEU).

And I have setup Panorama in Active & Passive mode.

In DR scenario I am aware that, WEU Panorama failover and fall back t

SSH export is using temp location which is not defined

Lately we are having issue with SSH export bundle on Panorama. we have specified location /abc/abc/abc however in the system logs we can see logs as /tmp/pan/<file_name>: No such file or directory.

tried resetting the config still same issue. 

Pa

Push to an HA passive PA causes active PA IPSec tunnel to drop, sync is off

After importing configs from an HA pair running 10.1.3 (for the features), and after merging the device groups and templates, we push the newly merged templates back out to the passive member.  So far, so good.  Then suspend to flip the active and pa

Post Panorama Upgrade to 9.1.12-h4, unable to Commit-Verify to firewalls

I completed the upgrade of Panorama from 8.1.18->8.1.21->9.0(dl)->9.0.15->9.1.0(dl)->9.1.12-h4.  Seemed to go fine.  After the upgrade, all firewalls listed in the Panorama-Summary tab are Out of Sync.  Expected to have to Commit to all of the firewa

Panorama Rest API - Add ae subinterface

Hello everyone!

I am planning to create around 200 new subnets on my firewall managed by Panorama template. We plan to restructure our network.

I want to do this via the Rest API of Panorama. I was able to create a ae interface via the API, no proble

Panorama Device Deployment

I'm trying to upload new content files to Device Deployment, but after a refresh, I get "Error while trying to read upgrade info. Please try again later."

Can someone explain why this happens, and if there is any fix?

Advance URL Filtering Not showing in Panorama 10.0.x

Hi, 

I have updated my URL filtering license to Advanced URL Filtering license and I am unable to see Advance URL Filtering License information in Panorama also in the summary page, The URL Filtering version showing 000000.00.

Please help me on t

Scheduled Backup/Export

So I have panorama backing up to ftp, all works well, but I noticed it doesn’t ever clean up the backups?  Can we tell it how many copies/days to keep somewhere. It is not a huge amount of data but I have exports daring back over a year and will neve

Disable ARP entry for outside interface

Hi Team,

As per the ISP request, I need to disable ARP entry for my palo alto outside interface. Please suggest me how to proceed.

Palo alto outside interface connected with ISP, as per their request we need to disable ARP entry on that interface

Force template specific config

Hi Team

We use Panorama to manage various sites, almost 25 sites are there which we manage completely using panorama, I mean we have pushed the interface IP also using Panorama.(So 25 device groups and template stacks for each of them.)

I went thro

Panorama Manager of Managers

I've been tasked with looking into and understanding how the Panorama Manager of Manager architecture works. I have had no luck in finding any documentation or tutorials on it, but our SE team has talked about it a few times. Has anyone had any first

tiktok sign up page

has anyone whitelisted the signup section of tiktok?  the area with signup using facebook, google etc?

having issues making it work