User-ID agent upgrade consideration

Hello,

I have two Palo Alto Firewalls, each running different software version, 7.1.5 and 7.0.7.

Both firewalls connected to the same User-ID agent server. The User-ID agent version is 7.0.5-3

I am planning to upgrade one of the firewall from 7.1.5 to

Issues with both client and clientless VPN on 220 running 8.0.1

Response page are not display when using explicit proxy.

Hi everyone,

I found the issue the response page not display when the client acccess ssl websites and using a web proxy via explicit mode.

I already enabled policy decryption for all ssl websites.

On a browser will display "page not found!" or "This si

Decrypt-Error (SSL In bound inspection)

Dear Team ,

i am using PA 5020 BOX With PAN OS 7.1.5 when i am configure the SSL Inspection Inbound and create the Decrypt policy on the firewall so i am getting this error , could you please share the solutions to fix this error and share the config

Exclude YouTube from Safesearch

Hi All,
 
I have an issue with getting my PA to work in conjunction with Google Apps ( or G Suite) as it is now known. A little about the enviroment:
 
Two group of users:
 
Group 1
SSL decryption enabled
Safe Search disabled
Allowed to approve videos in YouT

can not install and not remove globalprotect

I work on a Vista machine and after using it succesfully for a long time, I had a problem with my GlobalProtect (it did not connect). I read somewhere it might help to uninstall it and then re-installing again, which I did. The uninstall was succesfu

Using AWS Bundle 2 as an Ironport replacement

I have a Bundle 2 in trail at the moment as a POC. At first glance, the interface is overwhelming, so navigating it is cumbersome at first.  What I am trying to accomplish is a viable replacement for Ironport WSA.  I have a Bluecoat POC in place and

Weird Malware URL Reporting

Has anybody else noticed that their botnet report is triggering on weird URLs that couldn't actually exist. I've listed some examples but I can't figure out why some of the URLs being reported are so clearly 'wrong'. 

Visited malware URL 8M{zy!ces{~y

TeamViewer restrict unsupervised access

Hey everyone,

i got a question from one of our customers, described below:

Constellation:
PC1 (At home, with internet-access)  <-->  PA-firewall  <-->  PC2 (at office, TeamViewer-controllable)

Now, to the question. The costumer wants to restrict the ac

Weird routing problem from mgmt interface. Icmp-redirects? If so, how to turn it off?

I have a problem on a PA500. When it attempts to send traffic to one particular subnet via the management interface, the packets are sent to the wrong place. Instead of going to the default gateway, they go to an ASA. All other subnets route correctl