Panorama Discussions | Palo Alto Networks

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

Provision Panorama VM

Hello I have 3 VM-Series in the same deployment profile, I don't have enough credits for another firewall or more CPUs I want to use panorama with credits, can only enable panorama in the deployment profile already exists and provision Panorama? o Panorama is consuming credits from one more firewall? I can't find information that when config...

Panorama "A maximum of 500 of last 7 day's logs will be displayed.”

Dear Team, When i enter the 'show system logdb-quota' command in Panorama, the 'Expiration-period' value of detailed and summary is as follows. detailed : 60% Expiration-period: 70 dayssummary : 30% Expiration-period: 370 days However, in practice, 370 days of logs are not retrieved. ex) filtering 370 days by show log urlsum start-time eqa...

Create policies from flows in file excel/csv to a Panorama particular - Device Group

Create policies from flows in file excel/csv to a Panorama particular - Device Group Hello Live Community, good evening, as always, thanks for the collaboration, the good vibes and the good vibes. I tell you that I have the following scenario/situation: Panorama- Device Groups - HA Firewalls - Policies on Device Groups, Any/Any Allow - Loc...

Disabled applications in shared: altamont-outbox-burner-id checkmarket-base checkmarket-uploading google-surveys-base google-surveys-uploading pintere

Hello All, We are getting frequently alert message in panorama due to which we are getting P1 incident.But we don't know what will be impact in our production environment.Kindly sugguestion on it. Regards, Sunildutt

Resolved! Critical processes (configd) are down. Please try again later.

Hello Everyone,Need some help!Issue: When i try to open Panorama WebUI, I am seeing this error "Critical processes (configd) are down. Please try again later." any troubleshooting steps available to fix this one?Thank You in advance

Complete application traffic report for firewall rule

Hi! We have migrated our customers old firewalls to Palo altos and managing them through Panorama. Now we want to convert the old rules into specific application rules. From server to server , Application by application. So what I need is a complete traffic log/report, rule by rule to be able to start with the new Application rules. It s...

Resolved! Syntax for PA3050 and PA3020

I would like to check if what are the differences between the syntax of xml configuration for the two models? Particularly for the configuration of the two models to the Panorama server.

Panorama slow since updating to 10.1

Since i have updated from 9.1 to 10.1 i have found Panorama to be noticeably slow. Especially when searching the traffic log or generating a report. Sometimes it will just time out. It is running in legacy mode. It appears to have adequate cpu and memory. Is it just me?

Deleting multiple rules associated to a single ip from panorama

Hi, I would like to know if there is a method to delete multiple rules associated to a single ip address from panorama ?? That single ip is permitted on several firewalls for communication and the server holding that ip was decommissioned and so the rules relating to it need to be cleaned up from all the existing firewalls. I am able to get bu...

Unable to perform initial export and push due to shared objects

Hello I am encountering a particularly frustrating problem. After importing a device's configuration into Panorama, the commit fails because the initial export and push includes shared objects, but not shared items in the templates. So if I, for example, have email log forwarding in my shared objects, commit on the device fails because the e...

Resolved! firewall change event monitor

Hello Guy's 1. Add allow any/any rule:- If adding any new policies any/any rules in our environment. How I can forward/analyze logs to the Syslog server?2. Added administrator account:- If any new admin account is added in Palo Alto locally. How can see the logs in the Syslog server?3. Add authentication method:- We have SAML authentication in o...

Resolved! EDL in Panorama

Hi all, i've configured a couple of EDL in Panorama as shared list and pushed to all the devices. No problem at this point. Now,if i check the accessibility of the URL is normally available But if i try to list all the domains ,the output is always 0 entries. the test source URL is successfull from both Panorama and local device. I tried to ...

FW connectivity with Panorama in AWS

Cordial greetings Palo Alto Team This is to clarify a doubt regarding the integration of devices to Panorama. Currently the appliance is deployed in an AWS region, however, we have FW VM-Series deployed in GCP, Azure and AWS cloud. The AWS FWs are already integrated, however, I would like to know how I could integrate the appliances that are i...

Error When Adding IP Address to Address Group via the XML API

I am working on a SOAR automation workflow that automatically adds an IP address to a Block List if Palo Alto identifies it as a “CRITICAL” or “HIGH” vulnerability coming from outside to inside our network. I am getting an error once the workflow reaches the part where it attempts to add the IP address to the block list. The error is the respo...

Resolved! Access Domains and context switching

HI All, I have configured access domains to control read only access to certain device groups, but the context switching is not working, I have configured a Admin Role locally, added the user to the local device with an admin role, even added the username as the device and vsys role to see if that would work, the log output from #tail follow...