SSL Decryption quits working.

We have SSL Decryption setup and seems to work for awhile and then quits.  I cannot say for sure but it seems to be USER-ID related.  Out IT department logs in locally onto their laptops.  They might occasionally map a network drive or launch a progr

High Sierra and GP 4.0.5

When installing GlobalProject on High Sierra we can connect to our site and install the software.  When we enter the portal and connect we just see a spinning disc.  It never connects, never asks for credentials.  This only happens on High Sierra.  

ping speed

Is it possible that, delay and the inconstancy of ping speed is due to the low priority of ping compared to other packages?

How ARP request initiated from Palo Alto sub interface

I am having some issues new ISP. I have assigned my sub interface with /29 range of IP given by my ISP.

I have added staic route towards gateway of ISP with exit interface( sub interface) specified in Palo Alto Virtual router.

Can some tell who will in

How PA transceiver warranty?

Hi All,

I have a question about paloaltonetworks transceiver warranty.

If I order some transceivers e.g.  PAN-SFP-PLUS-LR or PAN-SFP-PLUS-SR from paloaltonetworks , how the warranty about those transceivers? The same warranty  with hardware FW platfo

Service Routes Don't Work W/O MGMT Connected

I have hundreds of PA 220's on 8.1.0 that are unable to download updates.  The services routes are all configured to use a loopback and its IP which routes fine, and can ping whatever is necessary, the management interface is disconnected at all thes

SSL Decryption inbound and OCSP stapling

Hi

Seems like inbound SSL Decrypt doesn't handle OCSP stapling  ..... Not sure why PA have missed out on this.

Raised it with my SE... not happy with my SE not feeling the love.

Any one else been caught by this

EDIT - adding stapling, must stay away

SSL inbound inspection wildcard certificate

Trying to configure ssl inbound inspection for one of my web sites hosted internally. The IIS server has many sites being served thru host headers. All of the SSL bound sites use the same wildcard certificate *.external-domain-name on this server. I

Add local IP list to minemeld

Is there a way to add local IP's in a notepad to be added to minmeld for blocking.

Panorama - HA Group 10: Anti-Virus version does not match

Hi Experts,

 From  Panorama, we're managing around 20+firewalls. In Panorama system logs, we're seeing " HA Group 10: Anti-Virus version does not match error messages".

Though the errors are self expalantory , how do we confirm out of 20 firewalls whi