Panorama

Hello I was looking for the REST API's for EDL in panorama, I could only able to find for the create EDL that too for IP only (https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-panorama-api/pan-os-xml-api-use-cases/enforce-policy-using-external-dyn

Syslog in Panorama Policy

Hi All,

We have multiple firewalls managed by Panorama. We have single Template managing these firewalls.

There are local Syslog configs done on each firewall as logs is being pushed on different ports. But now we have multiple rules configured in Pa

Panorama need SD-WAN license individually

We have PA -1410 and PA-445 firewalls. Each firewalls have Sd-Wan license . do we require Panorama separate sd-wan license? All device will connect to panorama.

Failed migration to Panorama 10.1.3

I had an issue recently when attempting to migrate a 3250 HA pair (10.0.8-h4) to Panorama 10.1.3.  I was able to complete the push and commit however anything that uses a password or secret such as a IKE Gateway pre-shared key didn't work.  The resul

Panorama SDWAN 3.2.0 - cannot add devices in SD-WAN due to router name

We have SDWAN plugin 3.2.0  When I try to add a device under Panorama - SD-WAN - Devices

I can add a Name, I selected type as Hub but then I dont see anything in Router Name and I cannot type anything in the router name.  Its a required filed so I ca

New Superuser getting blank page in Panorama Administrators tab

Hi everyone, I wonder if you can help.

Our customer created a new user account (Superuser with MFA authentication enabled), same as other users with admin role but in these cases without MFA configured.

The issue we have is that - unlike other users

GP -> SAML -> EntraID Windows users vs Mac user experience issues

Got a weird one and I'm on Mac so short of pestering my colleagues reaching out to the greater community while I wait on support to attempt to triage.

GP client 6.2.3 - PAN 11.1.2

GP setup;

• using default browser to support our yubikey users
• using

Help finding partial config diff API

I'm working on an integration to segment access to the Panorama feature to review audit comment messages and partial config diffs for policies.  In Panorama, if you navigate to Policies -> <select a policy> -> Audit Comment Archive, there are three p

Paloalto TLS/SSL error while forwarding logs over TLS Syslog

PKCS12 Certificate  and Password generated from Paloalto is used at syslog server to establish connection between both system and used to decrypt the logs. However after establishing the connection the ssl handshake is broken and we see below error.

Add managed firewall to Panorama without import policy to Panorama

Hi all

There are pre-rules, local firewall rules, post-rules and default rules after I added a firewall to Panorama, but when we import the configuration to device group, seems import rules to pre or post rules is a must during the the import opera

No logging for URL Filtering on Panorama

Hello all,

Having some trouble getting URL filter logging to work correctly.

The PA is currently running version 10.2.6

When going to Objects > Security profiles > Url Filtering, I do see red text saying a license is needed for URL filtering. B

Unable to push tempalte to new firewall

I have setup a couple of new firewalls and I am unable to push the template from panorama. Also device group has not yet been pushed.

Should I deploy template or device group first?

See the errors below..

NGFW - Panorama registration 3978 : Traffic allowed but RST constantly.

Hi, 

I was trying to connect a new PA-440 spare device to our existing Panorama infrastructure, when i faced this weird issue as shown in the system logs. 

It's as if the TCP session starts and abruptly ends on port 3978 leading to a never ending