This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4839 Views
  • 0 replies
  • 0 Likes

VPN between palo alto and Meraki with dynamic WAN ip address

Hello Mams and Sirs... I am stuck in a unique issue. Meraki has 2 WANs - primary one is static and secondary one is dynamic. They have 4 Lan subnets. The initial plan was to use their FQDN as remote peer and they would take care of the VPN failover. But, in ikev2, we could reach only one of their 4 subnets. When I switched to ikev1, I could rea...

msdphi by L2 Linker
  • 532 Views
  • 0 replies
  • 0 Likes

Limitation on Panorama (license) used by VM-series

Hello experts, Not sure this should belong to Panorama or VM-series, We have a Panorama for log collection already for on-perm ngfw.Planning to purchase more ngfw firewall for AWS and Azure with BYOL (NGFW credits) 1) is there any limitation (e.g max number of Gateway managed) if we also purchase the credits for panorama (for mgt and logs) ? ...

Admin GUI Login Fails on WAN Interface - Slow Load & "Single Sign-On" Error on PA-410

Hello Community, I'm hoping to get some expert advice on an issue I'm facing with a single PA-410 firewall. I've done some initial troubleshooting, but would appreciate a second opinion on the cause and the best path forward. The Problem When I enable management access on our public WAN interface (ethernet 1/1), I cannot log in to the Admin We...

bvantala by L0 Member
  • 1361 Views
  • 0 replies
  • 0 Likes

Firewall rules not getting reflected in Cloud NGFW

Hi, We have a on-prem Panorama which manages Cloud NGFWs. We have observed intermittently that the Firewall rules deployed from Panorama are not getting reflected in Cloud NGFWs. There are no visible errors that are generated with Panorama showing the deployment as "Completed". Is there any reason for which it could be happening ?

Panorama can't show specific timeframe log

Hi community, I have a question. I’m experiencing an issue where Panorama does not show logs for a specific time frame. However, when I check directly on the firewall, the logs for that time frame are visible. I've already confirmed that the log forwarding configuration is correct, and everything seems to be working fine—except when filtering ...

panos_commit_panorama commits all pending changes regardless of user specified in admins list.

Ansible playbook snippet: ------------------------------------------------------------ collections: paloaltonetworks.panos vars:panorama_provider:ip_address: {{ panorama_fqdn }}username: {{ username }}password: {{ password }}tasks: name: Commit Configpanos_commit_panorama:provider: {% raw %}"{{ panorama_provider }}"{% endraw %}sync: trueadmins:...

Resolved! Using Panorama to change controlled firewalls Active/Passive

I am upgrading all my controlled firewalls using Panorama. I am able to upload, install, and reboot my passive firewalls. But now I need to switch my active/passive firewalls. Is there a way to do this in Panorama? Before I would manually login (GUI or CLI) to each active firewall and use the suspend function to force fail-over. If there is a...

J_Healy by L1 Bithead
  • 2329 Views
  • 4 replies
  • 0 Likes

Panorama shows "error: Failed to set disk X sb"

Dear community! Our Panorama VM is working fine but is showing the following error logs in the config.log file: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 2025-06-10 04:59:16.701 +0200 Error: pan_cfg_mgr_update_sysd_sstat_diskusage(pan_cfg_mgr.c:11672): Failed to set disk 3 sb2025-06-10 04:59:16.873 +0200 Error: pan_cfg_mgr_update_sysd_sstat_diskusag...

Carracido by L4 Transporter
  • 585 Views
  • 0 replies
  • 0 Likes

DR Panorama facing issue with the login when performing failover from DC to DR

Dear Team, One of our customers is using Panorama for both their DC and DR locations. When the DC Panorama is active, they are able to log in successfully to both the DC and DR Panorama. However, when a failover is performed and the DR Panorama becomes active, they face an issue logging into the DR Panorama, even though the same credentials work...

unable to reduce high disk usage

Someone please help on this...Unable to reduce high disk usage of PA firewall and also not able take access through Winscp.and while cleaning the disk usage command it gives below error."Server error : op command for client dagger timed out as client is not available"

M.Rajput by L1 Bithead
  • 1984 Views
  • 6 replies
  • 0 Likes

Resolved! Built-in External Dynamic Lists not visible in Panorama

I am trying to create policies in Panorama (9.1.12-h3) using the built-in External dynamic lists (Palo Alto Networks - Bulletproof, Palo Alto Networks - HIgh Risk IP Addresses, etc.) but i do not see them under the destinations in the policy. I can log into the firewalls and see the dynamic lists there but not from Panorama. I tried googling a...

DSBIII by L1 Bithead
  • 8365 Views
  • 3 replies
  • 0 Likes

Problems with Panorama Logs (e.g. Panorama shows logs from 2 years ago when we filtered for more recent dates and does not show the filter correctly).

Hi team We have a Panorama , mode VMware ESXi, version 11.1.6-h3 wiyh log failure, The problem we have is that the panorama does not show logs beyond 1 month, however, I see logs from a specific date in 2023. Does anyone know what could be happening and how can I retrieve logs?I search for logs from several months ago and it shows logs from the ...

Alpalo_0-1748852063191.png
Alpalo by L4 Transporter
  • 1948 Views
  • 6 replies
  • 0 Likes

Loading firewall context in CLI

Is there a way to load firewall context in Panorama CLI, similar to how we can load in GUI. Or is there a way to export in excel runtime stats/routes in GUI from virtual router.

raji_toor by L4 Transporter
  • 1463 Views
  • 4 replies
  • 0 Likes
  • 844 Posts
  • 47 Subscriptions
Top Solution Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks