Presumably because when Palo Alto reach out to a side that *it* doesn't trust, it needs a way to tell your browser. _But_ it still wants to be able to own the cert to perform description for itself.
Hi , can this help block whatsapp file transfer? like , so the site itself and chatting would work but the ability to send and receive files be blocked..?
![Palo Alto SSL Forward Proxy (Outbound SSL Decryption) [2024]](/img/n.gif)
Your videos are short and crisp...keep doing the good work
Thanks, @Ed Goad. Could you please clarify why would we require two certificates? As you have created one Trusted-Cert and another Untrusted-Cert.
Presumably because when Palo Alto reach out to a side that *it* doesn't trust, it needs a way to tell your browser. _But_ it still wants to be able to own the cert to perform description for itself.
I'm assuming the local machine the certificate was exported to and installed is the Active Directory server?
Where can I purchase the firewall?
Is it on Amazon?
Good job Ed
Is it a good option for monitoring purposes to deploy the self signed created by palo alto to end users in an organization? Is it common?
Hi , can this help block whatsapp file transfer?
like , so the site itself and chatting would work but the ability to send and receive files be blocked..?
Excellent, tks!
Thanks Ed. Do I need to export the untrusted-ca and install that also to the local machines?
When it is untrusted will get you a warning, such as going to your local router
Damn it Ed. Reply to your comments. Great video btw.