Question regarding Signal messaging application

Currently have a PA-440 at home and trying to setup Signal messaging application.  I know the application is cert-pinned and therefore cannot be decrypted.  To get it to work, I added to the SSL Exclusion Decryption list the following hosts/domains p

How to onboard passive PA440 firewall to Panorama using dataplane interface

I need assistance integrating Palo Alto firewalls in an Active/Passive HA setup with Panorama. Below is an overview of the setup:

At customer sites, we have Palo Alto firewalls configured in Active/Passive HA mode, and they are currently managed lo

How can I search a particular source&destination address in lots of security policys？

Dear all:

        I have a question about search security policys. We have lots of security policys on our pa ngfw. some of them use a address group as a source& destination condition, some are not. The content of address-group may be a range or a

I cannot delete a virtual wire interface

Hello,

I've already looked at similar topics here, but it did not help me.

I'm supposed to set up a DHCP server on ethernet1/2 and to do it, I need to set up ethernet1/2 as a layer3 interface on the CLI first.

Initially, I tried these commands:

CONFIG logs and syslog

Hi there,

we're shipping our logs to a centralized syslog instance. That works great for all types of logs from the PA with the exceptions of the CONFIG logs.

The CONFIG logs are submitted at all, with the problem that the interesting parts "before-ch

GlobalProtect 6.3.3

Our vulnerability scanner for the last couple weeks has been reporting vulnerabilities for GlobalProtect that are remediated with an upgrade to 6.3.3, but other than the vulnerability acknowledgement from PA mentioning it I do not see any evidence of

Difficulty in Displaying Unused Firewall policies in PA networks using API key

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

PublicCloud Server certificate validation failed

Hi community,

I have an issue where system log shows severity high for an event:

tls-X509-validation-failed

and the description:

Palo Alto PublicCloud Server certificate validation failed

Dest Addr: sg.wildfire.paloaltonetworks.com

Reason: u

Nesicito desistalar

Hola, trabajé con una empresa telefónica que me instaló el programa Cortex. Ahora que ya no trabajo con ellos, quiero desinstalarlo, pero no encuentro la forma y no puedo contactar a la empresa. El programa está afectando el funcionamiento de mi PC.

Block YouTube in general, but allow videos from specific YouTube channels?

We have YouTube blocked in our organization and allow access for individuals to it (the entire service) based on business need and director approval via User-ID and membership in a specific AD group.

Now one arm of our organization (that has access t

Backup Internet with Ipsec VPN doing BGP

Hello,

Mostly just need a sanity check on this configuration.

I am setting up a backup internet for one of our hub sites as a failover.

Currently the connection to the other primary sites is via a IPsec tunnel using iBGP to pass routes between the "Hub

Direct vs Partner Enabled support flow chart

I found a flow chart on the PAN portal earlier this that showed the customer's path to receiving support for both Direct and Partner Enabled, but I can't find it anymore. Have you seen it?

Result: Failed to validate server certificate for endpoint api.paloaltonetworks.com

issue1:

I am having issues with getting Panorama and firewalls connected up to datalake. I opened a case and i am told it can't connect to api.paloaltonetworks.com. I have pcap that says otherwise. There is no ssl decryption in between. Its frustratin