SSL decryption for email

Hi,

Do we need to enable SSL decryption simply for reading SMTP messages?

We have created a profile under Objects and attached it to incoming mail policy but attachments with extension dll, bat, exe file all get through and see nothing in Wildfire su

Config .XML in the config bundle is empty

Hi everybody!

I have a little issue with which maybe you can help me: I have a HA with a pair of 3060s among other FWs managed by a Panorama, when exporting a config bundle from the Panorama, the config XML file for the pair of 3060s is empty. What

Panorama VM - 8.0.x - How long can we run in Legacy Mode?

We currently have a Panorama virtual machine with 2TB of storage runnint 7.1.x.  I know there are changes to the log database in 8.0.x.  We also have some newer PA firewalls that only run 8.0.x, so we would like to upgrade Panorama.  How long can we

Check patchs installed HIP

Hi,

We configured the HIP module in Palo Alto but is not able to detect patches installed on Global Protect clients sometimes.
There are clients, connected to the VPN GP that if it is able to see the patches, in contrast there are others that does not

How to find source of high open sessions and/or throughput

If your Palo Alto firewall is experiencing an unusually high OPEN session count, and/or high throughput, what is the best way to determine the source or destination at the same time of the event?

We have most of our security rules set to log at ses

Link Failure - Syslog

Hey all!

I have a PA-3020, eth1/1 and eth1/2 are an aggregate (ae1).

on the switch, it's a Port-channel.

I want to be informed when one of both interfaces is down.

So I set up a syslog server and all system logs are forwarded.

For testing purposes, I

How to combat VPN’s that use spoofed SNI?

Hi all,

My environment has a large fleet of iPads in an educational institution. We have restricted internet (no social media and so on) so the students spend time finding ways around it. We thought that bringing the PA unit in and enabling decryptio

Suspicious Packet with MAC address all zeros

Hi All,

I monitor networks for my client, recently I discovered some suspicious outbound traffic from internal to a known malicious host, although the packet was dropped on the PA. the logs I have showing that the packet's source IP as the internet's

Setting Up MS DirectAccess

Trying to configure DireectAccess (Windows Server) to work but I believe it is failing due to the Palo Alto. I created a custom application and application override for the ports needed but still failing. Per a Microsoft Document, "the firewall has t