Issues with both client and clientless VPN on 220 running 8.0.1

Response page are not display when using explicit proxy.

Hi everyone,

I found the issue the response page not display when the client acccess ssl websites and using a web proxy via explicit mode.

I already enabled policy decryption for all ssl websites.

On a browser will display "page not found!" or "This si

Decrypt-Error (SSL In bound inspection)

Dear Team ,

i am using PA 5020 BOX With PAN OS 7.1.5 when i am configure the SSL Inspection Inbound and create the Decrypt policy on the firewall so i am getting this error , could you please share the solutions to fix this error and share the config

Exclude YouTube from Safesearch

Hi All,
 
I have an issue with getting my PA to work in conjunction with Google Apps ( or G Suite) as it is now known. A little about the enviroment:
 
Two group of users:
 
Group 1
SSL decryption enabled
Safe Search disabled
Allowed to approve videos in YouT

can not install and not remove globalprotect

I work on a Vista machine and after using it succesfully for a long time, I had a problem with my GlobalProtect (it did not connect). I read somewhere it might help to uninstall it and then re-installing again, which I did. The uninstall was succesfu

Using AWS Bundle 2 as an Ironport replacement

I have a Bundle 2 in trail at the moment as a POC. At first glance, the interface is overwhelming, so navigating it is cumbersome at first.  What I am trying to accomplish is a viable replacement for Ironport WSA.  I have a Bluecoat POC in place and

Weird Malware URL Reporting

Has anybody else noticed that their botnet report is triggering on weird URLs that couldn't actually exist. I've listed some examples but I can't figure out why some of the URLs being reported are so clearly 'wrong'. 

Visited malware URL 8M{zy!ces{~y

secure voice (tls / srtp) tls inspection and dynamic media port opening

Good afternoon. Can anyone say if palo can be configured to dynamically open the media flow post signalling for secure voice using tls and srtp? Secure SIP end points will be secured by the Palo Alto.

The TLS will need decrypting by usingthe correct

Panorama Device Group - Commit Failed

Dears, we have a PA3020 Box already configured. We imported that config to Panorama (creating a new device group & template by default). We didnt mark "sharing" so the device group has unique objects

Then we clanup the policies and objects to keep on

TeamViewer restrict unsupervised access

Hey everyone,

i got a question from one of our customers, described below:

Constellation:
PC1 (At home, with internet-access)  <-->  PA-firewall  <-->  PC2 (at office, TeamViewer-controllable)

Now, to the question. The costumer wants to restrict the ac

Import TXT or CSV to an Address Group?

I have a TXT file (I could also save it as a .CSV) of about 2000 known bad IP addresses I want to block traffic to/from. Is there a way to import this list into an Address Group? I see an option to download a dynamic list but I would then have to hos

Weird routing problem from mgmt interface. Icmp-redirects? If so, how to turn it off?

I have a problem on a PA500. When it attempts to send traffic to one particular subnet via the management interface, the packets are sent to the wrong place. Instead of going to the default gateway, they go to an ASA. All other subnets route correctl