I have decryption turned ON for outlook.office365.com url but firewall cannot really inspect the contents that are inside the email. Is it because Microsoft encrypts the email and Palo doesn't know how to decrypt it? has anyone tried decrypting outlook email traffic and successfully log the data files inside them?
What PAN-OS version do you have installed? It could be related to the protocol http/2 and because of that the firewall does not unterstand it and cannot see and block/log files.
Maybe it is the same with a case that I have opened some months ago where a firewall on PAN-OS 8.1 was not able to block files on a specific website. What the exact reason was I would have to check again, but at least this one isn't fixed in PAN-OS 9.1.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!