Panorama Discussions | Palo Alto Networks

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

Migrate Panorama to AWS

Hi, I'm planning to do a migration of Panorama from esxi to AWS. This will require the Panorama to have a different IP address. What's the best way to handle the IP change, if the firewalls are getting the Panorama IP config from device template setting? Is it best to override locally after the migration and then update the template after?

Panorama LpS

Hello, I would like to better understand the Log per Second and CPU load related the Panorama. Considering a Panorama M200 in Mixed mode (Management + Log collector). The M-200 LpS capacity is 10000. 10000 is the max log per second that means that a spike of 15000 the Panorama will lose 5000 LsP by default or that Panorama try to get it but the ...

User-ID Server Monitoring switch to WinRM

How can I check which User-ID Server Monitoring I am using in the Palo Alto so that I can switch to WinRM if it isn't selected already?

Provision Panorama VM

Hello I have 3 VM-Series in the same deployment profile, I don't have enough credits for another firewall or more CPUs I want to use panorama with credits, can only enable panorama in the deployment profile already exists and provision Panorama? o Panorama is consuming credits from one more firewall? I can't find information that when config...

Panorama "A maximum of 500 of last 7 day's logs will be displayed.”

Dear Team, When i enter the 'show system logdb-quota' command in Panorama, the 'Expiration-period' value of detailed and summary is as follows. detailed : 60% Expiration-period: 70 dayssummary : 30% Expiration-period: 370 days However, in practice, 370 days of logs are not retrieved. ex) filtering 370 days by show log urlsum start-time eqa...

Create policies from flows in file excel/csv to a Panorama particular - Device Group

Create policies from flows in file excel/csv to a Panorama particular - Device Group Hello Live Community, good evening, as always, thanks for the collaboration, the good vibes and the good vibes. I tell you that I have the following scenario/situation: Panorama- Device Groups - HA Firewalls - Policies on Device Groups, Any/Any Allow - Loc...

Disabled applications in shared: altamont-outbox-burner-id checkmarket-base checkmarket-uploading google-surveys-base google-surveys-uploading pintere

Hello All, We are getting frequently alert message in panorama due to which we are getting P1 incident.But we don't know what will be impact in our production environment.Kindly sugguestion on it. Regards, Sunildutt

Resolved! Critical processes (configd) are down. Please try again later.

Hello Everyone,Need some help!Issue: When i try to open Panorama WebUI, I am seeing this error "Critical processes (configd) are down. Please try again later." any troubleshooting steps available to fix this one?Thank You in advance

Complete application traffic report for firewall rule

Hi! We have migrated our customers old firewalls to Palo altos and managing them through Panorama. Now we want to convert the old rules into specific application rules. From server to server , Application by application. So what I need is a complete traffic log/report, rule by rule to be able to start with the new Application rules. It s...

Resolved! Syntax for PA3050 and PA3020

I would like to check if what are the differences between the syntax of xml configuration for the two models? Particularly for the configuration of the two models to the Panorama server.

Panorama slow since updating to 10.1

Since i have updated from 9.1 to 10.1 i have found Panorama to be noticeably slow. Especially when searching the traffic log or generating a report. Sometimes it will just time out. It is running in legacy mode. It appears to have adequate cpu and memory. Is it just me?

Deleting multiple rules associated to a single ip from panorama

Hi, I would like to know if there is a method to delete multiple rules associated to a single ip address from panorama ?? That single ip is permitted on several firewalls for communication and the server holding that ip was decommissioned and so the rules relating to it need to be cleaned up from all the existing firewalls. I am able to get bu...

Unable to perform initial export and push due to shared objects

Hello I am encountering a particularly frustrating problem. After importing a device's configuration into Panorama, the commit fails because the initial export and push includes shared objects, but not shared items in the templates. So if I, for example, have email log forwarding in my shared objects, commit on the device fails because the e...

Resolved! firewall change event monitor

Hello Guy's 1. Add allow any/any rule:- If adding any new policies any/any rules in our environment. How I can forward/analyze logs to the Syslog server?2. Added administrator account:- If any new admin account is added in Palo Alto locally. How can see the logs in the Syslog server?3. Add authentication method:- We have SAML authentication in o...

Resolved! EDL in Panorama

Hi all, i've configured a couple of EDL in Panorama as shared list and pushed to all the devices. No problem at this point. Now,if i check the accessibility of the URL is normally available But if i try to list all the domains ,the output is always 0 entries. the test source URL is successfull from both Panorama and local device. I tried to ...

Discussions