Scribd
Upload
33 views2 pages

Device Groups

The document provides guidance on using device groups within Panorama for effective firewall management. Device groups allow for the organization of firewalls based on various criteria, enabling the configuration of hierarchical policy rules. It includes links to detailed topics on device group hierarchy, policies, and objects.

Uploaded by

bibist
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
33 views2 pages

Device Groups

The document provides guidance on using device groups within Panorama for effective firewall management. Device groups allow for the organization of firewalls based on various criteria, enabling the configuration of hierarchical policy rules. It includes links to detailed topics on device group hierarchy, policies, and objects.

Uploaded by

bibist
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

(/content/techdocs/en_US.

html)

Updated on Thu Mar 13 20:26:10 UTC 2025

Home (/) | Panorama (/content/techdocs/en_US/panorama.html)


| Panorama Administrator's Guide (/content/techdocs/en_US/panorama/10-1/panorama-admin.html)
| Panorama Overview (/content/techdocs/en_US/panorama/10-1/panorama-admin/panorama-overview.html)
| Centralized Firewall Configuration and Update Management (/content/techdocs/en_US/panorama/10-1/panorama-admin/panorama-
overview/centralized-firewall-configuration-and-update-management.html)
| Device Groups (/content/techdocs/en_US/panorama/10-1/panorama-admin/panorama-overview/centralized-firewall-configuration-and-
update-management/device-groups.html)

DOWNLOAD PDF (/CONTENT/DAM/TECHDOCS/EN_US/PDF/PANORAMA/10-1/PANORAMA-ADMIN/PANORAMA-


ADMIN.PDF)

Panorama Administrator's Guide


(/content/techdocs/en_US/panorama/10-
1/panorama-admin.html)
Device Groups

Table of Contents

To use Panorama effectively, you have to group the firewalls in your network into logical units called device groups. A device
group enables grouping based on network segmentation, geographic location, organizational function, or any other common
aspect of firewalls that require similar policy configurations. Using device groups, you can configure policy rules and the
objects they reference. You can organize device group hierarchically, with shared rules and objects at the top, and device
group-specific rules and objects at subsequent levels. This enables you to create a hierarchy of rules that enforce how
firewalls handle traffic. For example, you can define a set of shared rules as a corporate acceptable use policy. Then, to allow
only regional offices to access peer-to-peer traffic such as BitTorrent, you can define a device group rule that Panorama
pushes only to the regional offices (or define a shared security rule and target it to the regional offices). For the relevant
procedures, see Manage Device Groups (/content/techdocs/en_US/panorama/10-1/panorama-admin/manage-
firewalls/manage-device-groups.html#id9b0560e8-e831-435e-a287-6a7970eae5d6). The following topics describe device
group concepts and components in more detail:

Device Group Hierarchy (/content/techdocs/en_US/panorama/10-1/panorama-admin/panorama-overview/centralized-


firewall-configuration-and-update-management/device-groups/device-group-hierarchy.html#id014f3417-fe14-4fdd-8fd7-
c03ac8cb2e0b)

Device Group Policies (/content/techdocs/en_US/panorama/10-1/panorama-admin/panorama-overview/centralized-


firewall-configuration-and-update-management/device-groups/device-group-policies.html#id671977ca-1041-4605-
8a80-fbc10f3f5d7b)

Device Group Objects (/content/techdocs/en_US/panorama/10-1/panorama-admin/panorama-overview/centralized-


firewall-configuration-and-update-management/device-groups/device-group-objects.html#id0fee714c-9e17-43a0-aac5-
54e0c34f37e3)

Was this information helpful?


This site uses cookies essential to its operation, for analytics, and for personalized content and ads. By
Yes No
continuing to browse this site, you acknowledge the use of cookies. Privacy statement ❯ Cookie Settings
(https://www.paloaltonetworks.com/legal-notices/privacy)
Previous (/content/techdocs/en_US/panorama/10- (/content/techdocs/en_US/panorama/10-
Next
Templates 1/panorama-admin/panorama- 1/panorama-admin/panorama-
overview/centralized-firewall-configuration- Device overview/centralized-firewall-configuration-
and
and-update-management/templates-and- Group and-update-management/device-
Template
Hierarchy
Stacks template-stacks.html) groups/device-group-hierarchy.html)

Technical Documentation Co

Release Notes (/content/techdocs/en_US/release-notes.html) Abo


Search (/content/techdocs/en_US/search.html) Care
Blog (https://www.paloaltonetworks.com/blog/category/technical- Cus
documentation/) LIVE
Compatibility Matrix (/content/techdocs/en_US/compatibility- Kno
matrix.html)
OSS Listings (/content/techdocs/en_US/oss-listings.html)
Sitemap (/content/techdocs/en_US/sitemap.html)

(https://www.facebook.com/PaloAltoNetworks) (https://w
(https://www.youtube.com/channel/UCPRouchFt58TZnjoI65aelA)

(/content/techdocs/en_US.html) © 2025 Palo Alto Ne

This site uses cookies essential to its operation, for analytics, and for personalized content and ads. By
continuing to browse this site, you acknowledge the use of cookies. Privacy statement ❯
(https://www.paloaltonetworks.com/legal-notices/privacy)

You might also like