This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4905 Views
  • 0 replies
  • 0 Likes

Resolved! Connecting back to Panorama

Hi, We have multiple site connected to central Panorama. Due to some issue we were not able to connect to Panorama. At the same tie we have to do some Policy changes on Local Firewall. These Firewalls are in Active/standby setup. To make change in Policy I had to "disable Panorama Policy and object" I also disabled the sync from primary to s...

MPFirewall_1-1760559853955.png

Import Device configuration into Panorama, Device window is blank

Trying to import HA pair into Panorama, follow the docs on importing configuration into panorama (Migrate a Firewall to Panorama Management (paloaltonetworks.com)) Follow steps 1 -3 and all fine at step 4 where it says ' "From Panorama, select Panorama >Setup>Operations, click Import device configuration to Panorama, and select the Device...

PaulTowns_0-1702396643774.png
PaulTowns_1-1702396794737.png

failed to generate selective push

Hello, I'm struggling with the integration of new devices, after many tries, I finally removed the new devices, but 2 of the other firewall can't commit anymore : when I try to push to devices, I've got the following error "Failed to generate selective push configuration. Last in-sync configuration for the device is from a different version, s...

Resolved! Process to Rebuild Panorama with Prisma Access & Prisma SDWAN

Posting here while waiting for TAC. We use Panorama to manage NGFW and Prisma Access with Prisma SDWAN integration. We recently rebuilt Panorama Azure VM. Latest dynamic updates and plugins are installed, device cert is valid, and cloud services OTP applied. We tried loading the old Panorama running config to get everything back to normal. Ho...

service certificate push from panorama to managed firewalls eg: vpn

Hi folks, We have panorama and few pairs to managed firewalls being managed by panorama, Under the Templates, created CSR and imported the signed CA and pushed it to specific template firewall(say FW01-active), the managed firewall local configurations displays the new certificate, however, on the FW02-passive one the certificate did not sync....

PAN-OS 10.1 with VMWare ESXi 8.0

Hi everyone, Would it be okay to upgrade our VMWare ESXi version to 8.0 even while remaining on PAN-OS version 10.1? We didn't renew our panorama license as we have moved all but a couple firewalls over to StrataCloudManager. Thank you!

Resolved! Issue Panorama and templates

I'm having a problem configuring GP with an authentication profile (LDAP). We have two templates, one for the GP configuration and another for LDAP GroupMapping (and a template stack with booth templates. So when I enter the LDAP GroupMapping configuration in the same GP template, authentication works correctly, but if I put the configurations i...

BigPalo by L4 Transporter
  • 5437 Views
  • 6 replies
  • 0 Likes

How can we limit the Panorama XML API access ?

How can we limit the Panorama XML API access ? How can we limit the Panorama XML API access ? We are using this XML API for Terraform and ansible automation. We want to give only access to few device group and we don't want to give access to all device group. please advice how can we achieve this. We checked in Admin roles in Panorama and we don...

Panroma using public ip

Hi, we are using multiple paloalto firewall .To manage centrally we are using panorma .But current configuration working through site to site vpn . Can we established the connectivity through internet .It will help us even if the site to site vpn is disconnected. Is it possible in Panorma ?

Resolved! Panorama Rest API - Add ae subinterface

Hello everyone! I am planning to create around 200 new subnets on my firewall managed by Panorama template. We plan to restructure our network. I want to do this via the Rest API of Panorama. I was able to create a ae interface via the API, no problem. But I cannot create subinterfaces for this ae interface. We are running Panorama 10.1.3-h1. ...

Error: . IPSec Tunnel IPSEC_FWNCACAL2_Tun196 Tunnel Interface tunnel.196 has no virtual-router configured.

Hi, I'm setupping an ipsec tunnel for the first time thru Panorama. When I try to push, I got this error: . IPSec Tunnel IPSEC_FWNCACAL2_Tun196 Tunnel Interface tunnel.196 has no virtual-router configured. I verify all setting including the tunnel under interface menu, and the tunnel got the default router selected, but I'm still got the sam...

Panorama Administrators API

Hello Folks,I'm trying to integrate panorama with IGA tool for user access management. We want to create/modify/delete users in Panorama Administrators. Do we have any APIs to achieve this? With this PAN-OS REST API documentation I'm not able to find anything related. Appreciate your help on this.Panorama

Log Collector Redundancy

Hello, We want to configure log redundancy. Below is our infra: 1. Two Locations, both locations is active. 2. In both locations having PA appliances in HA & Panorama VM in panorama mode. 3. Panorama HA is configured between both Panorama. Below is our requirement: How we can achieve log redundancy ? Location 1 PA NGFW logs 1st forward to ...

Resolved! Migration from Panorama M-500 to M-700 - Feedback/Input

I am in the process of planning the best way to approach my Migration from Panorama M-500s to Panorama M-700s. I currently have 2 Panorama M-500s in HA, and 2 M-500s as dedicated log collectors. I have my M-700s setup in the DCs and trying to figure out the best and easiest way to get this migration completed. The 700s Panoramas now have d...

Errors when pushing template to new Palo

I have managed to do a full push of a new template to a new firewall for a migration but I am getting a few errors. They are all related to the virtual router no being configured and one interface ae3.16 is not valid. In my template I have the VR set to default as the current Palo is also using. ae3.16 is reference to use this VR.. why am I g...

MAllen_0-1754649764711.png
MAllen_1-1754649937887.png
M.Allen by L1 Bithead
  • 726 Views
  • 0 replies
  • 0 Likes
  • 853 Posts
  • 47 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks