Panorama Discussions | Palo Alto Networks

HA cluster status 'cluster-unknown'

Hi all,

I'm in the process of importing a number of firewalls into Panorama. I've also setup one new FW HA cluster from scratch using Panorama.

All the firewalls imported into Panorama show a HA cluster state of 'cluster-unknown' in Panorama -> M

...

Increase Disk Panorama VM

Hello everyone.

Anyone can help me to increase the panorama VM Storage?
I was increased in Hardisk in VM ESXI but when I am to clone to disk, the output is
"unsupported target disk size of 1000.0 GB. Disk size must be 224.0 GB"

the exiting disk space

...

Panorama - Untrusted TLS/SSL server X.509 certificate Vulnerability

Hi All,

My Panorama was scanned by Rapid7 and we received this vulnerability "Untrusted TLS/SSL server X.509 certificate"

More info here: https://www.rapid7.com/db/vulnerabilities/tls-untrusted-ca/

TAC hasn't been able to figure it out but so far

...

Custom report not listing hostnames

I have a custom traffic report which lists source address, dest address, application, and sessions. The web page result of the report populates 'source host name' and 'destination host name' results with names - either address object names or FQDN re

...

Panorama Device Push Fails

I am unable to push new configurations to our connected firewalls. It seems to be related to the addition of RADIUS administrators. I can log in with the local admin but even that user can't force the changes through.

Here is an example of the erro

...

Resolved! Firewall Disconnected from Secondary Panorama

Added some new firewalls to a Panorama HA pair and one of the devices is disconnected from the secondary Panorama.

admin@intra-az1> show panorama-status 

Panorama Server 1 : 10.201.24.12
    Connected     : yes
    HA state      : Active

Panorama S

...

Upgrade from 10.1.7 to 10.2.0 not allowed, 10.2.0 and greater not supported.

upgrade failed

Resolved! 5671 port with SSL/TLS packets/headers

Before I post this query, let me declare that I am a newbie to firewalls and their configurations.
I have an application that communicates with Azure Service Bus over port tcp/AMQP 5671/5672. I am facing an issue w.r.t the firewall rules. I requested

...

Resolved! Moving Addresses, Address Objects, Services, Service Groups & CURL's

Hello There,

We have a PA -HA Pair and we operate it via Panorama.

However, all the address objects are stored on the Firewall (VSYS)

We have Prisma in place for GP & need to move all the Addresses, Address Objects, Services, Service Groups & CURL's

...

PA220 FW Software Upgrade from Panorama

I have recently just added a PA220 FW to Panorama. Currently, the panorama managed FW is running 8.1 code and I had planned to upgrade it to 9.0.0. However, when going into Panorama to upload the 9.0.0 code to the FW I noticed that the PA220 is not

...

how to block randomly generated urls

We are seeing alot of urls with randomly generated urls getting past our existing guards. Is there a rule, plug-in or ?? that could deny urls that don't match known word patterns?

Thank you

Panorama

NGFW

AIOps for NGFW

Palo Alto Template Revert error

Hi everyone,

I am a network engineer and we have recently swapped out some Palo Alto firewalls for newer models. The old firewalls were managed in Panorama and I recently tried to integrate these new firewalls to Panorama. I want both the Device Grou

...