SSL Decryption

Traffic that has been encrypted using the protocols SSL and SSH can be decrypted to ensure that these protocols are being used for the intended purposes only, and not to conceal unwanted activity or malicious content.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

SSL Decryption

Traffic that has been encrypted using the protocols SSL and SSH can be decrypted to ensure that these protocols are being used for the intended purposes only, and not to conceal unwanted activity or malicious content.

Palo Alto Networks firewalls decrypt encrypted traffic by using keys to transform strings (passwords and shared secrets) from ciphertext to plaintext (decryption) and from plaintext back to ciphertext (re-encrypting traffic as it exits the device).

Discussions

Author Topic Views Replies
Kakada_Sao16
01-28-2025

SSL Decryption does not work after PAN-OS upgraded to 11.1.4-h7

Dear PA team, After we upgraded the PAN-OS from 11.1.4-h1 to 11.1.4-h7 than Proxy box not working with SSL Decryption policy unless we go to decryptio... — Read more

posted in Web Proxy Discussions

59 0
ciscojuniperf5
01-28-2025

FQDN resolution mismatch Contains a hyperlink

I have a connection to a destination FQDN allowed via Palo Alto firewall PA 440.Palo alto shows a different IP to the FQDN than one on the host machin... — Read more

posted in Next-Generation Firewall Discussions

66 0
manuellara
01-20-2025

Global Protect SSL VPN

Hello Team:I have GP configured with an ssl_vpn certificate.x.x.x.x:444It works, but when I try to open it in the browser it doesn't work:The policies... — Read more

posted in General Topics

230 2
Erik01
01-24-2025

Problem with Global Protect VPN Contains a hyperlink

Hello everyone, the company I work for has decided to adopt GlobalProtect VPN, working in smart working when from home I try to connect via my company... — Read more

posted in GlobalProtect Discussions

227 2
NickoKristian
01-11-2025

Root Partition Full Contains a hyperlink

Hi All, I am trying to clear root partition on our passive FW. It was suggested in one of the articles(https://knowledgebase.paloaltonetworks.com/... — Read more

posted in Next-Generation Firewall Discussions

255 1

Blogs

DOTW: What Are Cipher Suites? Contains an image Contains a hyperlink

01-06-2022 — Find out what are cipher suites and which ones are supported for the different features on your device in this Discussion of the Week. Find out what are cipher suites and which ones are supported for the different features on your device in this D... — Read more

Labels: Administration Decryption How to SSL SSL Decryption tls
5922 3 by in Community Blogs

The Increasing Necessity for SSL Decryption Contains an image Contains a hyperlink

07-07-2021 — From performance abilities to new hardware, SSL Decryption capabilities have been greatly improved. — Read more

Labels: ngfw SSL Decryption
8521 6 by in Community Blogs

More on SSL Decryption Contains an image Contains a hyperlink

08-07-2020 — Read how SSL Decryption gives the ability to view inside of Secure HTTP traffic (SSL) as it passes through the Palo Alto Networks firewall. — Read more

Labels: NGFW Configuration PAN-OS SSL Decryption SSL Forward Proxy
21556 3 8 by in Community Blogs

HTTP/2 Inspection Contains an image Contains a hyperlink

07-09-2020 — Starting with PAN-OS 9.0.0, HTTP/2 inspection is supported on Palo Alto Networks firewalls. Learn more here! — Read more

Labels: Decryption HTTP NGFW Configuration PAN-OS PAN-OS 9.0 SSL Decryption
18451 2 9 by in Community Blogs

AddTrust External CA Root Expired Contains an image Contains a hyperlink

06-05-2020 — AddTrust External CA Root expired on 30th of May, 2020. Find out how this can impact your traffic and how to fix this! — Read more

Labels: certificate Decryption SSL Decryption
9188 2 2 by in Community Blogs

Articles

Tips & Tricks: SSL Forward Proxy Contains an image Contains a hyperlink

05-22-2023 — In today's digital world, where encryption is all around us, SSL decryption becomes a real superhero in the fight against hidden threats and bolstering network security. Luckily, Palo Alto Networks Next-Generation Firewall comes to the rescue with... — Read more

Labels: Network Security Next-Generation Firewall SSL Decryption
7510 4 2 by in General Articles

Nominated Discussion: URL Filtering in TLS v1.3 Contains a hyperlink

02-28-2023 — — Read more

Labels: Advanced URL Filtering ngfw NGFW Configuration SSL SSL Decryption tls
6565 1 2 by in General Articles

Best Practices for SSL Decryption with Prisma Access Contains an image Contains a video

01-13-2022 — Understand how SSL Decryption with Prisma Access can increase your visibility into network traffic and reduce security threats — Read more

Labels: Best Practices prisma access SSL Decryption SSL Forward Proxy
9264 by in Prisma Access Webinars

SSL Decryption with Prisma Access Contains a video Contains a hyperlink

09-13-2021 — Gain visibility and control over network traffic through SSL Decryption with Prisma Access — Read more

Labels: prisma access SSL Decryption
6354 by in Prisma Access Webinars

Keeping Configuration Aligned to Best Practices Contains a hyperlink

03-31-2021 — Configuration changes are always necessary in a network, whether they are for adding new applications, allowing access to users or to create exceptions in security profiles. Prisma Access Cloud Management provides the ability for administrators to make sure that the configuration is always aligne... — Read more

Labels: Prisma Access Cloud Management SSL Decryption
5606 by in Prisma Access Cloud Management Articles

Videos

Digital Learning Courses

Visit Palo Alto Networks' learning platform, Beacon, for free technical knowledge and educational resources related to all of our products.

Please note: You need to be logged into SSO in order to view this content.