This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4916 Views
  • 0 replies
  • 0 Likes

access domain with saml sso using Azure AD

Hi expert, We have Pano auth with SAML SSO , which is with Azure AD. To deploy access domain feature, can see some doc for Radius auth, but none is for SAML. Looks there is access-domain attribute on Azure AD, but I have no access to verify. If anyone has same configure, please shed some light. Thanks in advance !

AllanGao by L1 Bithead
  • 2266 Views
  • 0 replies
  • 0 Likes

How to move all template configuration in "Shared" location into Vsys1

Hi all, Some help on this would appreciated. Evaluating a client panorama that has a variety of templates on it, with much of the configuration in the templates being done in the "Shared" location, and much of it in "vsys1" location, including a number of certificates that have been imported to one or the other inconsistently over the years....

Panorama template zone logging profile and dependency loop

I have entered a dependency loop situation in Panorama that surprised me a little. We have installed a new firewall, and configured it to talk with Panorama. It shows up here and we are ready to push configs. Said firewall have a template stack associated, and it's placed in a device group to receive a base set of policies. Now the template-st...

Resolved! Bulk MTU Size Change via Panorama

Hi All, We have a number of tunnel interfaces managed by Panorama where we want to change the default MTU size. Just wondering if we can script this or does each interface need to be touched to make the change? Thank a Veteran today, Dan

Encryption algorithm used in Panorama for admin users

Hello Due to an internal IT risk audit, we need to know the encryption algorithm that Panorama uses to store the device administration accounts in your local database such as the master admin account or any other account that we may create to administer the device. Please, we need an official link from the manufacturer or an email from the man...

BigPalo by L4 Transporter
  • 1894 Views
  • 0 replies
  • 0 Likes

Panorama integration

Do we foresee any downtime during taking existing running firewalls behind panorama server? Also what precautions we should consider for such work?

d.spider by L2 Linker
  • 2688 Views
  • 2 replies
  • 0 Likes

Resolved! How to upgrade software in firewalls when firewalls are managed by panorama

1.if firewalls are managed by panorama, Should we need to upgrade only from Panorama or can also upgrade from firewall as well ?2. if firewalls are managed by panorama, how to backup config for the specific firewall ? should we need to take config backup only from panorama or can also take backup from firewall as well ? 3.if firewalls are manage...

perumalj by L2 Linker
  • 4832 Views
  • 1 replies
  • 0 Likes

Custom Admin Template Examples for GP Admin and Network Engineer?

So recently we (as in voluntold lol) decided to get rid of our dedicated Cisco L3 devices and move the L1 (VMWire) only FW's into L3 as a "cost saving measure". Won't get into how much I hate this but the decision has been made. Also this entire thing is managed via Panorama so don't need "do local FW overrides of templates". Also virtual syst...

PeterT by L2 Linker
  • 2619 Views
  • 1 replies
  • 0 Likes

Cant push config due to error

Getting error when trying to push configs from Pan - checked policy and it looks fine was not a problem previously? Details:. Validation Error:. rulebase -> security -> rules -> Deny_Inbound_Internet_Bad_IPsBOTNET -> source-hip unexpected here. rulebase -> security -> rules is invalid. Commit failed

After changing exiting object name at panorama, got commit failed message

• . Validation Error:. rulebase -> security -> rules -> <our rule name A>-> source ‘<want to amend object name> is not an allowed keyword. rulebase -> security -> rules -> <our rule name A>-> source ‘<want to amend object name> is an invalid ipv4/v6 address. rulebase -> security -> rules -&gt...

Multiple Virtual Routers in a single system - Issues with Failover in an Active/Standby setup

Hello, We have a pair of PA5050 appliances that operate dual virtual-routers in order to provide dual ISP connectivity using eBGP between them. We also have some site to site and AWS VPNs terminating on VR1 and GlobalProtect VPNS terminating in VR2. The issue we have seen is that when upgrading the PAN-OS, the appliances fail over as do se...

Configuring shared interfaces, VLAN interface and virtual switch On Vsys

I am looking for information on following configuration. Reference document, link or video will be a great help. - How to set up a shared interface for multiple V-sys? - How to set up VLAN interface (L2/L3) on specific V-sys? - Do we have a virtual switch concept in v-sys configurations so that resources (servers) in the v-sys zones can commun...

Harsh by L0 Member
  • 2154 Views
  • 0 replies
  • 0 Likes
  • 853 Posts
  • 47 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks