ms-teams not working

Hello,

Ms-Teams works fine when we set the Profile setting to 'none' for the policy. As soon as we set the URL filtering profile, it stops working. We have allowed the category. Also, made sure *.teams.microsoft.com is added in the Overrides>allow li

PA200 and PAN OS 8.0.5 is it a good idea?

Hello

I got new PA200 as a RMA replacement so I have more time for upgrade.

Is it a good idea to do that? I keep always to wait at least  for X.0.5 since I upgraded one time to 6.0.0. and it was nightmare.

Is someone using 8.0.5 on PA200? or 8.0.4? W

Youtube with Restricted Mode-On

Hello,

We would like to play specific videos on youtube with Restricted Mode to On. We have followed the article below but no luck.

https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Allow-a-Single-YouTube-Video-and-Block-All-Other-Vi

Virtual Router static routes

So I made the mistake of creating static routes that specify an exit interface. So now I have traffic coming into the firewall and then going out a different interface to get to other networks, rather then having that traffic hairpin back down my AE

Best Implementation of PA 8.0

Dear All Expert,

Do anybody can share Best Implementation of PA-8.0 ?
https://www.sans.org/reading-room/whitepapers/auditing/palo-alto-firewall-security-configuration-benchmark-35777 


Best Regards,
Chhayheng

Block SSL urls for BYOD student users- Maintain Cert trust chain

Hello all...

I find myself in a bit of quandary on how to deal with blocking\inspecting various SSL based urls for our student BYOD users.

I realize I need to decrypt the traffic in order to take action on it... but our problem lies with how to deal

Is it possible to export the private key from the forward-untrust certificate to view in wireshark ?

I want to check a specific HTTP request that is send to a webserver and which is currently blocked by one of our vulnerability checks to verify if the signature is correct.

But I need to be able to view the decrypted data on the exported capture, ther

dismiss global protect download link From GP Portal

hi Guys,

well, i m running on version 8.03 and have done all necessary clientless configuration but one thing is a bit weird to me.

-  Once a user log in  via the Portal,  he is able to use or see  the GP download link, has anyone any idea on how to

FTP weird behaviour

Hi,

We realised that our PA is doing something strange with FTP app

We have create and above rule (Servidores a INET 1). All our FTP connections involved should match this rule but we see connections which are jumping this rule and mathicng in another

Skype for Business - Send files

Hi,

Having some issues with Skype for Business and file sending. When i have SSL Decryption on, I cant recieve or send files over SfB (Works when I turn it off).

Does someone know what URL`s i should add to the "NoDecrypt" url list to make it work?

GlobalProtect & User-ID

Hello,

I am trying to find some information on how to configure GlobalProtect with User-ID but haven't been able to. What I am trying to do is to enforce a new policy where when some of the users, who have laptops that aren't joint to the enterprise