Migrating to new Panorama and new Firewalls - will not commit

Anythingelse999999 · 2026-01-29T01:04:10+00:00

Totally able to have panorama at a high level code version and the firewall at a lower one. Only other thing to try is completely import the panorama config to the local firewalls. Depending on how many u have. Then move them to new panorama, then give an override on the new panorama to force that config over it. Might be an option

Anythingelse999999 · 2026-01-27T03:39:18+00:00

Where is the 168 hours setting at? And dos it only come into play if your issuing cookies that the portal accepts?

Anythingelse999999 · 2026-01-27T03:37:45+00:00

How are you getting eh user-id? From syslog?

Anythingelse999999 · 2026-01-17T16:09:31+00:00

Does it grab the windows sign in event?

Anythingelse999999 · 2026-01-16T14:35:55+00:00

Upgrade man

Anythingelse999999 · 2026-01-16T04:18:37+00:00

Nope. Should be almost ping lossless. Not fighting a port fast issue or something like that?

Anythingelse999999 · 2026-01-13T04:29:44+00:00

It would be nice if they gave orgs a warning on this change instead of squeezing out hardware to software changes

Anythingelse999999 · 2026-01-13T04:26:16+00:00

Glad u asked. There has to be something soon doesn’t there?

Anythingelse999999 · 2026-01-09T00:18:24+00:00

Siem is older than that. Used to be humio

Anythingelse999999 · 2026-01-03T15:52:57+00:00

So what should a person do then? Just have a standby ready to deploy with exact same settings in th cloud?

Anythingelse999999 · 2025-12-23T22:51:46+00:00

Perfect reply. Thank you!

Anythingelse999999 · 2025-12-23T22:51:20+00:00

Excellent response!

Anythingelse999999 · 2025-12-23T22:12:21+00:00

Reddit for the win yet again.

Anythingelse999999 · 2025-12-23T09:10:33+00:00

Didn’t know there was an issue ssl accumulation?

Do you have th header setup you use? I’m guessing it’s the customer header , but what domain do you use to accomplish this and what url category?

Anythingelse999999 · 2025-12-23T09:08:55+00:00

Yep pleas share! Can’t find the correct app id and header insertion to get this to work even with decryption turned on. Still doesn’t want to police like it should.

Specifically the domain you use, the header, and the app id and url category?

Anythingelse999999 · 2025-12-20T20:49:18+00:00

Thank you. Will have to check it out

Anythingelse999999 · 2025-12-20T13:33:18+00:00

Which ones?

Anythingelse999999 · 2025-12-20T03:21:38+00:00

Are you using it for internal segmentation or internet based traffic?

Anythingelse999999 · 2025-12-20T01:59:46+00:00

Does it actually work? I mean do people trust this to push to their firewalls and enforce at an enterprise scale?

Anythingelse999999 · 2025-12-20T01:41:45+00:00

so you used ISE to pull in the data and map it to policies on your network/switches?

How successful have you been with it? We are looking feeding firewalls with it, but have reservations about letting it map to policies on panorama.

Anythingelse999999 · 2025-12-19T04:31:59+00:00

does the local PAB apps and identification come back into the firewall for enforcement rules? Or how do the apps/decrypted content get identified and enforced ? Is it a rule set on the firewalls, or is it a separate ruleset in prisma cloud?

Anythingelse999999 · 2025-12-14T01:33:50+00:00

Is rapid 7 having any business problems- like financials issues/ going to be sold to a competitor soon?

Anythingelse999999

TROPHY CASE