Unable to connect to https://login.microsoftonline.com

hi

The whole company behind PAN firewall is unable to connect to https://login.microsoftonline.com.

no blocked page, just "sign in to your account" web portal but no place to login. Firewall does not show any blocked/dropped connection to this URL.

I cr

SSL decryption and browsers behaviours

Hello,

We are planning to perform SSL Decryption for overall Web Traffic (we are a public organization of around 5000 users).

We have started several tests by implementing SSL Decryption Best practice like not decrypting "Financial Services" and "Hea

Log filter for RANGE of IP's or Ports

Does anyone know the syntax used to create filters for port or IP ranges?

For example, I want to filter on IP's 10.0.0.1-10.0.0.5 9same for port ranges).

Thanks in advance

Blocking/Alerting on Web Sessions to IP Address Formatted URLs

One of my customers has asked if it is possible to block and/or alert upon HTTP or HTTPS connections that are made directly to an IP address instead of a dns name.  The specific IP addresses or DNS name is not defined, they would just like to alert u

palalto-updates vs ssl

After years of content update traffic showing up in traffic logs as paloalto-updates application, this traffic suddenly started showing up in traffic logs as ssl application.  This all started at approximately 6:40pm Eastern time on 4/1/2017.

Has anyo

Configuration Update Descriptions

Hi all,  The commit description is potentially really useful for tracking changes and linking back to change tickets, but I can't see where I can display a list of commits with the descriptions, to review what has been done. 

The configuration log sh

Panorama Dynamic Update overlap

Given the best-practices for Dynamic updates here, how do i configure this in Panorama and not have the commit warning for deployment schedule overlapping with 5 mins of another?

Its always going to be the case where Wildfire checking every minute wi

Can I use PAN-OS 8.0.0 to Study for the PCNSE 7 exam?

Hi guys,

I've been looking at getting a PA VM-50 for training puposes but I have been told that the both VM-50 and PA220 ship with PAN-OS 8 and is not backward compatible with earlier versions of code is this true?

Is there any reason I couldn't use

Restricted access to API?

Hi *,

I'd like to know if it's possible to restrict access to the API? (ex: to some IP addresses).

Example: if remote management is allowed from 192.168.0.0/24, is it possible to restrict the API usage to 192.168.0.1 by example?

Is it an option to

Proxy filtering or paloalto filtering

Hi All,

i have proxy in my network which is responsible for all filtering and categorizaing , also i bought a licnese for url filtering on paloalto so, is there any benefit to allow filtering and categoriziang on both ?

or no need for filtering on pa

Decrypting OPENVPN?

Is it possible to decrypt openVPN with SSL Forward Proxy? I'm pretty sure the asnwer is no, but I figured I would ask.

My problem is that I have a Ubuntu Server running openVPN client behind a VM-100. I would like to continue to use openVPN, but I wo