SSL decryption in forwarding proxy and a Web proxy after paloalto firewall

Hi all,

i have a PA firewall used for internet navigation and a transparent proxy for Web navigation.

I have enabled ssl decryption for a specific URL category that i have set in url profile in block-continue.

If i set my PDL browser with the proxy i di

Does PAN-DB categorization apply to subdomains?

If I register a domain in PAN-DB for categorization (https://urlfiltering.paloaltonetworks.com/), do all subdomains automatically fall under the parent category?  For example, if I register "mywebsite.net" for categorization, will the assigned catego

Moving Traps endpoints to another tenant (tenant-to-tenant migration)

Is there an automated way to push clients from one TRAPS Cloud instance to connect to another TRAPS Cloud instance? If so, how do we do it?

Next Gen Firewall Public Wifi Browser Warning Issue

We have a policy for public wifi subnet set to

• ACTION to NO DECRYPT,
• Set TYPE=ssl-forward-proxy, 
• DECRYPTION PROFILE = NONE

 When any public device (i.e laptop) try to open a HTTPS website that prohibited by our organization URL policy.

For example HTTPS’

Is it normal for the captive portal zone be displayed on BGP sessions? Not using CP?

The session browser logs display BGP port 179 sessions trying to connect to the same destination peer address, in 2 different zones, the correct zone and the captive portal zone, is this normal? We are not using Captive Portal, but I do see it enable

Import/export device state

Upgrading a firewall from a single fw to an HA pair. My plan is to do a device export of the current active firewall then import that device state to the two new firewalls then setup HA. Some of the config pieces are from PANORAMA. Any issues with im

QoS bypass traffic and guaranteed egress bandwidth

Hi all.  I am new to QoS and I am unsure where this number is coming from in the Qos statistics for bypass-traffic for guaranteed egress.  Thanks.  Brent

NAT configuration for interface Tunnel

Hi All,

I'm in the middle of migrating a series of PAs from one customer to another. The newer system is on version 8.1.10, the other is on 8.0.14.

I have configured the VPNs each with a seperate tunnel, pretty standard stuff. I am creating some spec

Alert if same traffic log entry is repeated N times..

We have had an instance of a third party having an issue with their system that generated repeated traffic over and over 17K 5 times a second, constantly.

I can match the traffic in the log fairly easily. 

How can I set up an alert for that to go to

PAN-OS 9.0 Released - Stop and Think

Today Palo Alto Network officially released PAN-OS 9.0 to the general public. Some of you may have read posts recently regarding features that have leaked out from the beta, and if you have any questions those of us that have been participating with

Monitor Qos statistic in PRTG

Anybody know how to monitor Qos Statistic in PRTG ?

VPN

Hi.

How to configure VPN that if peer ip and proxy id(remote address) is same.

When try connect address traffic don not flow over vpn. When i write route vpn gets down.