This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
SSL Decryption
Traffic that has been encrypted using the protocols SSL and SSH can be decrypted to ensure that these protocols are being used for the intended purposes only, and not to conceal unwanted activity or malicious content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

SSL Decryption

Traffic that has been encrypted using the protocols SSL and SSH can be decrypted to ensure that these protocols are being used for the intended purposes only, and not to conceal unwanted activity or malicious content.

Palo Alto Networks firewalls decrypt encrypted traffic by using keys to transform strings (passwords and shared secrets) from ciphertext to plaintext (decryption) and from plaintext back to ciphertext (re-encrypting traffic as it exits the device).

Discussions

Need answers? Register or Sign-in to Engage, Share, and Learn.
Author Topic Views Replies
nopasswd4u2
nopasswd4u2
11-18-2024

Adhering to OpenSSL Security Level 2 Post-Uprade to PAN-OS 11.1 & LAter

Hello, In the PAN-OS upgrade guide there is a new step (step 7) when upgrading to PAN-OS 11.1 & later which refers to regenerating or re-import... — Read more

posted in Next-Generation Firewall Discussions

94 0
L.ARIZAGA827435
L.ARIZAGA827435
11-14-2024

Windows-Update configuration PA-1410

Hello, I have a Microsoft Configuration Manager Current Branch 2403.It uses WSUS to get updates catalogs and download them. The server itself has its ... — Read more

posted in Next-Generation Firewall Discussions

120 0
ArthurAT
ArthurAT
11-14-2024

Security Policy for SSL & Web-Browsing only

Hi, I was wondering, is it bad practice to create a security policy with only the applications SSL & Web-Browsing in it? Ensuring best practice ... — Read more

posted in Next-Generation Firewall Discussions

173 2
AlbertHernandez
AlbertHernandez
11-13-2024

Issues with decryption on versions higher than 10.2.8-x, TAC no help

Brief summary, we have a pair of 3420's that where on 10.2.8-h3 for several months with no issues, suddenly one day we had issues with what seems to b... — Read more

posted in General Topics

514 3
karthik.subramaniam
karthik.subramaniam
10-29-2024

PA-VM in AWS with Decryption Rule - server side connection kept open

Hello, running 11.1.2-h3 on AWS with decryption rule. The setup is: Windows Client --> FW --> Web-Proxy --> Internet Firewall decrypts the tr... — Read more

posted in VM-Series in the Public Cloud

219 0
Join now

Blogs

DOTW: What Are Cipher Suites?

01-06-2022 — Find out what are cipher suites and which ones are supported for the different features on your device in this Discussion of the Week. Find out what are cipher suites and which ones are supported for the different features on your device in this D... — Read more

Labels: Administration Decryption How to SSL SSL Decryption tls
5523 3 by in Community Blogs

The Increasing Necessity for SSL Decryption

07-07-2021 — From performance abilities to new hardware, SSL Decryption capabilities have been greatly improved. — Read more

Labels: NGFW SSL Decryption
7891 6 by in Community Blogs

More on SSL Decryption

08-07-2020 — Read how SSL Decryption gives the ability to view inside of Secure HTTP traffic (SSL) as it passes through the Palo Alto Networks firewall. — Read more

Labels: NGFW Configuration PAN-OS SSL Decryption SSL Forward Proxy
20567 3 8 by in Community Blogs

HTTP/2 Inspection

07-09-2020 — Starting with PAN-OS 9.0.0, HTTP/2 inspection is supported on Palo Alto Networks firewalls. Learn more here! — Read more

Labels: Decryption HTTP NGFW Configuration PAN-OS PAN-OS 9.0 SSL Decryption
17257 2 9 by in Community Blogs

AddTrust External CA Root Expired

06-05-2020 — AddTrust External CA Root expired on 30th of May, 2020. Find out how this can impact your traffic and how to fix this! — Read more

Labels: certificate Decryption SSL Decryption
8752 2 2 by in Community Blogs

View All

Articles

Tips & Tricks: SSL Forward Proxy

05-22-2023 — In today's digital world, where encryption is all around us, SSL decryption becomes a real superhero in the fight against hidden threats and bolstering network security. Luckily, Palo Alto Networks Next-Generation Firewall comes to the rescue with... — Read more

Labels: Network Security Next-Generation Firewall SSL Decryption
6678 4 2 by in General Articles

Nominated Discussion: URL Filtering in TLS v1.3

02-28-2023 — — Read more

Labels: Advanced URL Filtering NGFW NGFW Configuration SSL SSL Decryption tls
5971 1 2 by in General Articles

Best Practices for SSL Decryption with Prisma Access

01-13-2022 — Understand how SSL Decryption with Prisma Access can increase your visibility into network traffic and reduce security threats — Read more

Labels: Best Practices Prisma Access SSL Decryption SSL Forward Proxy
8680 by in Prisma Access Webinars

SSL Decryption with Prisma Access

09-13-2021 — Gain visibility and control over network traffic through SSL Decryption with Prisma Access — Read more

Labels: Prisma Access SSL Decryption
5955 by in Prisma Access Webinars

Keeping Configuration Aligned to Best Practices

03-31-2021 — Configuration changes are always necessary in a network, whether they are for adding new applications, allowing access to users or to create exceptions in security profiles. Prisma Access Cloud Management provides the ability for administrators to make sure that the configuration is always aligne... — Read more

Labels: Prisma Access Cloud Management SSL Decryption
5209 by in Prisma Access Cloud Management Articles

View All

Videos

Digital Learning Courses

Visit Palo Alto Networks' learning platform, Beacon, for free technical knowledge and educational resources related to all of our products.

Please note: You need to be logged into SSO in order to view this content.

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks