decrypt-unsupport-param error with no decryption

We are receiving a decrypt-unsupport-param to a specific destination with no ssl inspection applied. I created a no decrypt rule and didnt apply a decryption profile so we weren't checking for expired or untrusted certs either. There is also nothing

Site-To-Site VPN Question

If we deploy a Site-To-Site VPN to one of our remote locations with a Palo Alto NGFW will our main hub firewall control the Threat/URL, etc... and Security/NAT rules for the other Palo Alto? 

Doubt about migrate FW to Panorama

Hello team,

I have a cluster of FW and Panorama both in version 10.2
Tomorrow I will migrate a FW cluster to be managed from Panorama following the following KB
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClZSCA0
Reviewing

Is there any way to apply multiple interface management profiles

should we get power supply along with RMA

Hi Team,

we got RMA box today and need to know, did you send power supply along with chasis ?

if not, can you please arrange.

the case ID # 03117886.

Thanks 

How to export disabled rules in Panorama

Hi All,

I'm new here and was wondering if I could get some help on this. I am looking to export some rules including disabled rules in Panorama but what happens is only the live rules get exported though I did include the disabled rules. Can I plea

Single sign-on-error

I am not able to create any case on support portal and getting the following error:

"We can't log you in because of an issue with single sign-on. Contact your Salesforce admin for help."

Kindly help

OCSP Service Temporarily Unavailable

Hi team,

I have configure an OCSP responder on my Panaroma, I do all the step of the documentation https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/certificate-management/certificate-revocation/online-certificate-status-protocol-ocsp.

Bu

Threat logs from DNS Proxy zone not showing source IP

We use DNS Proxy on 3 of our zones with the firewall IP as the address that the traffic is proxied to. In other words, the firewall proxies the network traffic with it's own IP address.

However, in the threat logs, we have some threats that do not

Doubt about Minemeld version 0.9.70

Hi team

We currently have deployed a server (Minemeld version 0.9.70), Company Systems requires us to upgrade the operating system of this server. It is running Ubuntu Linux 16.04. We are asked to deploy a version that runs Ubuntu Linux 22.04.

Is

creating a customer account

I am attempting to create a Palo Alto customer account so that I may transfer a Palo Firewall that it I have purchased to it.  I do not have a sales number for the purchase so I cant create an account.  I am buying the unit from a partner.  It is a u

Device Certificate not showing

Hello Guys,

I have problem with device certificate, i have create the device certificate, but is not showing in GUI Palo Alto.

but when i try to import configuration the certificate is showing.

anyone can help me why device certificate is not showing i

ECCN for PAN-OS

Hello,

I require the ECCN for your software, PAN-OS. I do not have access to the 'HW Accessory Cross Reference' link I have seen posted.

Alternatively, please provide an email address to your Trade Compliance team so I can contact them directly.

Packet drops with Unknown-TCP

Hi Team,

Need your suggestion on below. We have created a policy to allow access to a site with URL filtering.

Created new category to the specific set of URL and then allowed the same in URL Filtering Profile and called the same in ACL. Source is se