This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.
About Panorama Discussions
Post discussions about Panorama, a centralized network security management solution for all your Palo Alto Networks firewalls irrespective of their form factors or locations, in this forum.

Discussions

Start a conversation

Welcome to the Panorama Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4842 Views
  • 0 replies
  • 0 Likes

Firewall not connecting to Panorama

Hello I have new deployed Panorama and new PA-440 Firewall. I setup Panorama with all basic settings like IP address/netmask, default GW, DNS, it has license assigned. Next I generated AuthKey for the firewalls with validity for 10 days and without SN specified. PA-440 is in remote location and has a basic WAN setup and IPSec VPN to my datace...

AdamHP by L1 Bithead
  • 63757 Views
  • 22 replies
  • 0 Likes

Panorama Onboarding and Managing of PAN FW's

Hi All, I have a few questions, but let me share first what happened. End State Goal: Have the Panorama manage our HQ and Branch Firewalls( 5 Firewalls Involved, We have license for this) We have tried to onboard and use panorama for management of our PAN Firewalls. We have successfully onboarded our Active/Passive firewalls (From Device&g...

Panorama unable to access GUI after disabling encryption

Hi all, Recently implemented VAPT and found that TLS_RSA_WITH_AES_128_GCM_SHA256 is weak and should not be enabled. We disable the SSL TLS settings via the “set panorama ssl-tls-service profile “SSL TLS Profile 01” enc-algo-aes-128-gcm no”, however unable to access pano GUI afterwards. Anybody knows how to access GUI while disabling the VAP...

Resolved! Upgrade to 11.1.4-h1 for both Panorama and managed firewalls

Hello, I'm beginner with Palo Alto and want to ask somes questions: I can upgrade panorama (10.2.10-h2 actually to 11.1.4-h1) but when i check updates in device deployement for my managed firewall (VM,PA-3200,PA-460-,PA-410) i don't see a similar version. Does i need to do something like upgrade panorama before?

Panorama shared policy Out-of-Sync

i have a couple of firewalls being managed by panorama since long working perfectly. Recently, i saw the shared policy in Device>Summary>Sharedpolicy> Out-of-Sync> panorama pushed versions are identical on managed firewalls. in Template column > In Sync > but panorama pushed versions are different in FW01 and FW02. So my query ...

localhost.localdomain shows up in show config diff

If I enter config changes, set the cli config output to set and compare with running config, it seems I get some extra keywords in my output. The output line does not work to repaste back into the cli, creating extra steps to generate a "patch" config to apply later and not disrupt interim chnages (as long as they don't directly conflict) exam...

Panorama-Prisma Access Cloud Services - Reduce Sets and Commits

We have Prisma SDWAN with Prisma Access managed by Panorama(Azure VM). The Cloud Services plugin is constantly performing SETS and COMMITS to Panorama. SETS are a few seconds apart and COMMITS are 10-15 minutes apart. This has a noticeable impact on Panorama admin performance(slow gui), regardless of what CPU and memory show. 1) Is it possible t...

Paloalto TLS/SSL error while forwarding logs over TLS Syslog

PKCS12 Certificate and Password generated from Paloalto is used at syslog server to establish connection between both system and used to decrypt the logs. However after establishing the connection the ssl handshake is broken and we see below error. Syslog SSL error while writing stream; tls_error='rsa routines:RSA_padding_check_PKCS1_type_1:i...

Constant "management server failed to send phase 1 to client logd"???

Any thoughts on getting rid of a constant "management server failed to send phase 1 to client logd" on Panorama when attempting to commit? Issue has existed since at least PanOS 10.2 and we are currently on Recommended version 11.1.4-h7. Even when I check that logd is running, I may get this same message 3 to 8 (or more?) times before the sam...

Resolved! Unable to upgrade Panorama to 11.1.4-H1

Hello, i'm stuck while upgrading panorama to 11.1.4-H1, to be honest, every next release after 11.1.2-H4 (that is my current version) is showing the following errors: 2024/10/01 14:33:17 14:33:17 4802617 SWInstall FIN FAIL 14:33:21Warnings: Details:Failed to install 11.1.2-h9 with the following errors.SW version is 11.1.2-h9Nothing pending t...

MAerre_0-1727795650578.png
MAerre by L2 Linker
  • 11504 Views
  • 12 replies
  • 0 Likes

Huge drop in Panorama syslog forwarding!

Hello Team, I have M-500 Panorama appliances in the active-passive HA. Following are my queries; 1- I can see that active and passive panoramas forward logs to Syslog destinations. Sometimes the passive Panorama is forwarding more logs. Is that normal? 2- I can see a huge drop in the Syslog forwarded by both the Panoramas. The below command outp...

Get list of IP address being used by panorama for connected devices

Hello, anyone know of a way to get the ips being used by panorama to manage connected devices? NOT the MGT interface in the summary. We use routed services so that is a different ip as opposed to what is being used to actually connect to panorama. Wish there was an additional column, in the device summary for "current ip connected to panoram...

miguelMA by L2 Linker
  • 1342 Views
  • 1 replies
  • 0 Likes

Panorama Scheduled CSV Report Missing Data

We are having issues with Panorama scheduled CSV reports whereby the emailed report is missing data and replacing it with random characters like this on the last row "l@l)RlÔK p|" If i press the run now link within the custom report report settings and then then export to CSV manually the missing rows are appare...

mdk1380 by L1 Bithead
  • 2123 Views
  • 1 replies
  • 0 Likes
  • 845 Posts
  • 47 Subscriptions
Top Solution Authors
View All
Top Liked Posts
View All
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks