PA200 8.0.0 updated Global protect guide

Hi

Iam a proud owner of a pa-200 - updated to 8.0.0

and i was wondering if there is a updated step by step guide to configure GlobalProtect with a dynamic ISP provider (unstable ip) possible to use a loopback interface ? and Certificate.

http-video and http-audio getting blocked with decryption enabled

After enabling decryption recently we started to have a few issues with applications being identified incorrectly.

A few common examples of this are sap, http-video and http-audio

These end up being blocked with "application default" for the service,

Custom SaaS report possible

Hi 

I just wanted to say that i love the SaaS report, and its a good way to look at whats been going on.

I was wondering if there is a way to make this a little less techincal and customize it more so i can present it in a meeting with people that do

PAN OS 8 Could not connect to Cloud : SSL/TLS Authentication Failed

After an upgrade to PAN OS 8 i keep getting this critical event and i've seen it on multiple firewalls. 

domain: 1
receive_time: 2017/02/27 10:20:46
serial: xxxxxxxxxx
seqno: 3449381
actionflags: 0x0
type: SYSTEM
subtype: general
config_ver: 0
time_generated

Google Hangout /Skype for Business sudden disconnect and return online

Hi,

We're running on PA 3060 with PANOS 7.0.11 , for the several week, but  last 3weeks suddenly experience disconnection on Google Hangout and Skype for Business simultaneously and at random time.

Can you give advise where check on the logs. appreci

PAN-OS 8.0 - Automatic SSL Decryption Exclusion

Out of curiousity...Doesn't seem too technically smart for a firewall / security appliance come built-in with 121+ Internet based domains to include foreign domains which are automatically excluded from SSL Inspection:

From the user help doc:

Problem wildfire logs after upgrade fw from 6.1 to 7.1

Hi all

i have 2 firewalls managed by panorama, everybody with 7.1.5 recently upgraded from 6.1.

I have a wildfire public cloud configured for an smtp rule to check any file contained in every mail.

A wildfire analysis object profile:

After the upgra

Routing issue

Hi,

We are expecting a routing problem. Our Pa is learning router from eth1 from OSPF, so the VoIP traffic is going through this interface properly, on the another hand we have a VPN configured in another ISP just in case OSPF goes down. the problem

ACC graphs misrepresent the start times and the amount of traffics got transfed

Hi,

I have an session this morning that ran from 7:38 to 9:29.    The traffic log shows it recevied 6.5GB data and sent 473MB in that session within that period of time.

If I go to ACC and select 6 hours and filter by application,  From this screensh

Disable Hardware Offload

Hi All,

Whats the purpose of "Disable Hardware Offload" in Palo Alto Firewall ?

Any traffic that is offloaded to the field-programmable gate array (FPGA) offload processor is also excluded, unless you turn off hardware offload.

Can anyone please expl

Usage of Security Policy in Palo Alto Firewall

hi All,

I am bit confuse of the usage of rule no 2 and 3. Eventually they will deny the traffic. But which two benefits are gained from having both rule 2 and rule 3 presents? Any clarification please.

A.    A report can be created that identifies unc

PAN-OS 8.0 Updates

I've recently upgraded a lab 200 to 8.0 from 6.1.4.

After upgrade I couldn't get it to connect out for Software or Dynamic updates, getting an error saying no connectivity basically.

I saw the changes about where communication via the mgmt interface