SSL Inbound decryption and SMTP

Hi,

does anybody have issues with ssl inbound decryption and setting the smtp decoder in AV Profile to reset-both (antivirus + wildfire)? When the firewall receives an email (with ssl/tls enc enabled) and successfully decrypt the message and found a

How to factory reset VM firewall

I was downgrading the VM 500 firewall from 8.1.1 to 8.0.10 and booted the image with wrong config file. I am able to ssh firewall but maint mode  username & password (serial #) is not working. How can I reset the password and bring VM 500 in factory

DNS query to problematic web site

PA itself was generated the DNS queue of the domain that the management interface

Why would it come up with this action, and DNS proxy do not enabled.

Please kindly advise.

 

Log:
This host was detected performing a DNS lookup for the domain en[dot]wt1[do

Redundant Interface

Is there a good way to make an AE act like an ASA redundant interface? Basically all traffic goes through one interface unless it fails, then goes to the other interface.

I'm looking for the same functionality that the ASA redundant interface provides

Always -on OTP

I have an interesting scenario where I have a firewall protecting an extremely sensitive server and some dedicated users accessing it through another zone. I ran into a situation where only couple of users need access to it when remote. I thought of

Panorama support license upgrade

Hello,

I am just trying to upgrade support license of Panorama VM from 100 devices to 1000 applying the Auth code received for PAN-SVC-BKLN-PRA-1K. It is failing with message "Failed to install licenses. An initial license cannot be applied for renewa

QoS on inter-vsys traffic

We have internet traffic and tunnels terminating on vsys1. While our servers are in vsys2. Traffic to internet or tunnels is passed through inter-vsys routing from vsys2.

Server X which earlier used to be in vsys1 and had qos applied for it tunnel tr

Inbound SSL Decryption

Hi,

I have two questions for folks

1) I have setup Inbound SSL decryption as outlined in the documentation  (Import Server Certificate, Create Decryption Policy, Create Decryption Profile), and expected that when I looked at my traffic log to the ser

Global Protect Override windows singin option windows 7 and 10

Hello Any one could help me?

After install the GP in all machine the user logon on windows need to provide doman/user and if not provid the computer try to authenticate on GP that is with another credential (user + toke+passoword) 

i don't have pre-

Who vets External Dynamic Lists (EDLs)

The Knowledge article on blocking TOR, https://live.paloaltonetworks.com/t5/Featured-Articles/How-to-Block-Tor-The-Onion-Router/ta-p/177648, references a list on panwdbl.appspot.com. This website has a number of lists that can be used to filter traff

Autofocus Minemeld Advantage vs wildfire?

My understanding is that wildfire autoupdates some URL categories within 5 minutes if you have the correct licensing.  With a current wildfire/URL filtering subscription, and without traps on our network, what is the real advantage to autofocus? My u