This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
Many government sites are not opening on paloalto networks. Same is opening on outside network
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- Discussions
- General Topics
- Re: Many government sites are not opening on paloalto networks. Same is opening on outside network
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
Many government sites are not opening on paloalto networks. Same is opening on outside network
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
11-30-2022 09:29 PM
Many government sites are not opening on paloalto networks. Same is opening on outside network. Please suggest
6 REPLIES 6
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
12-02-2022 08:27 PM
Nop, We are not using any decryption functionality in our appliance. Without SSL encryption/Decryption its not working, Whereas same traffic through checkpoint firewall working perfectly.
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
12-03-2022 09:35 AM
Hi @SankalpS , @RVLINFRASEC ,
Have you done any troubleshooting on the firewall? Can you provide some output:
- Are you using URL filtering?
- Does your URL and DNS security licenses are still active?
- Check one of the problematic sites how firewall is categorizing it. Connect with SSH to CLI and use the following command:
> test url <url>
> test url-info-host <url>Replace <url> with the address you want to test. What is the output? What action is set for the same category in your URL filtering profile?
- Search URL logs (Monitor -> URL) for one of the problematic URLs. Do you see any logs? What action is seen in the logs?
- Resolve one of the problematic sites (with nslookup for example), search this IP in the Unified logs (Monitor -> Unified). Do you see any deny/block? Check one of the traffic logs - what is the "session end reason"? Is the counter for bites received different than zero?
Related Content
- False positive (Generic.ml) detected for our application Babylon 12. Can you help me white list? in VirusTotal
- Vulnerability (CVE-2022-41080 in Threat & Vulnerability Discussions
- Unable to use the internet when connected to Google Pixel 7 phone hotspot with GP VPN in GlobalProtect Discussions
- Many government sites are not opening on paloalto networks. Same is opening on outside network in General Topics
- XSOAR Sessions and Submissions option in Cortex XSOAR Discussions
Like what you see?
Show your appreciation!
Click Like if a post is helpful to you or if you just want to show your support.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks