VirtualBox & SSL Decrypt

Hello, this is a FYI for those using SSL Decrypt.

If you have SSL Decrypt turned on, the Oracle VM VirtualBox Manager application will not be able to check for updates via it's auto-update mechanism. You need to add "update.virtualbox.org" as a SSL d

"Fixed an Issue..." annoyances of release notes.

Is it a Palo Alto requirement that all descriptions of addressed issues must start with "Fixed an issue"?

After reading through an exhaustive list of bug fixes it gets quite annoying.

Bigger issue though, is there a bug database that is searchable?  C

NSS Labs NGFW 2017 report

Any thoughts or insights why Palo Alto dropped their ratings/score on the 2017 NSS Labs NGFW report?

https://www.nsslabs.com/research-advisory/security-value-maps/2017/ngfw-svm-graphic/

Please share as we will be kicking off our evaluation process. T

Bandwith shaping on complete subnet

Hey!

is it possible with a PA-3020 and OS 7.1.7 to set a bandwith limit for a complete subnet / Sub-Interface?

No matter which application etc.

Thanks!

Palo Alto and Cisco LACP configuration

We are having a problem setting up a port channel/aggregated ethernet interface using two 1 gig connections between our Palo Alto (model 5020, PAN-OS 8.0) and a Cisco switch (model WS-C3750G-24T (IOS: 12.2(55)SE1). We have worked with TAC but can't s

SNMP for Monitoring Palo Alto Networks Devices

Hi there,

The link https://www.paloaltonetworks.com/documentation/70/pan-os/newfeaturesguide/management-features/extended-snmp-support.html indicates that VPN tunnels can now be monitored. However the ifOperStatus and ifAdminStatus OIDs always respon

Inter Vsys Throughput Limitation

We are currently testing out a PA-5220 in a POC.  We have run into a strange issue with througput limitations when traffic is passing between Vsys.  On a single Vsys (L2, L3 and vWire), we are able to max out 10Gb's using a single TCP session with ip

failover

Is there anything such as a particle failover with a palo alto firewall? Can it start to failover and suddenly fail back and block some traffic

PA500 SSL decryption problem

To Palo Alto:

Not sure where to report this but today we have identified a problem with SSL decryption on our PA500 firewall.

The problem was that certain SSL encrypted webpages did not display correctly anymore. Websites that were in our excluded cat

Several sessions outage/interface drops

Hi,

We have a PA-5050 with PaNoS 7.0.7, we are expecting that there are moments during the day when the traffic increases that there is a outage for several sessions, but the sessions are still very low for this PA-5050. And we dont know why some ses

PAN as proxy destination?

Does anyone know if I can configure a web browser to use the PAN device as the proxy?  We used to have an ISA as that proxy but after installing the PAN's (two 500's in HA) the ISA waqs moved to a DMZ and only helps with incoming connections to thing

Panorama 8 not receiving PA log

Hi,

We are deploying a new Panorama 8 VM (in Panorama mode) and configured it to receive log from a PA-5020 running PA 7.0.11.

The Panorama GUI not show any log. I've debugged it in CLI:

> tail follow yes mp-log logd.log

2017-07-18 16:05:36.213 -0300 E