https://live.paloaltonetworks.com/t5/general-topics/online-cloud-storage/m-p/15687#M11481 <HTML><HEAD></HEAD><BODY><P>Hello nickcx1,</P><P></P><P>The best is to have a security rule first to block traffic based on Apps or URL to other online storage sites. Now create another security rule right below the first one to allow the online storage sites which are needed to pass through. Some sites may need decryption enabled on PAN to identify the underlying app.</P><P></P><P><IMG alt="app-grp.PNG.png" class="jive-image" height="143" src="https://live.paloaltonetworks.com/legacyfs/online/9718_app-grp.PNG.png" style="width: 836.4150943396227px; height: 143px;" width="836" /></P><P><SPAN class="j-post-author" style="font-size: 0.9em; font-family: 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; color: #3b3b3b;"><BR /></SPAN></P><P>In regards to identifying which apps are falling under online storage, the better way is to use the Application page where in we can select each column like Category , Subcategory and so on to grill down the apps of certain type. This can be saved as a App group and used in your rules. </P><P></P><P>Thanks</P><H1 style="font-size: 26px; font-family: 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; color: #666666;"></H1></BODY></HTML> Tue, 12 Nov 2013 15:17:08 GMT Phoenix 2013-11-12T15:17:08Z https://live.paloaltonetworks.com/t5/general-topics/online-cloud-storage/m-p/15686#M11480 <HTML><HEAD></HEAD><BODY><P>Hi, </P><P>I want to put together a policy to manage our user's access to online storage. We would like to restrict access to all but a few storage companies (DropBox, Hightail) and wondered how others manage such a task. </P><P></P><P>Also, I'd like to accurately pull a report on the applications that fall under this umbrella. The difficulty I see is that not all of them come under <STRONG>storage-backup</STRONG> with<STRONG> file-sharing</STRONG> and <STRONG>internet-utility</STRONG> being two others.</P><P></P><P>Thanks in advance, </P></BODY></HTML> Tue, 12 Nov 2013 14:55:40 GMT https://live.paloaltonetworks.com/t5/general-topics/online-cloud-storage/m-p/15686#M11480 nickcx1 2013-11-12T14:55:40Z https://live.paloaltonetworks.com/t5/general-topics/online-cloud-storage/m-p/15687#M11481 <HTML><HEAD></HEAD><BODY><P>Hello nickcx1,</P><P></P><P>The best is to have a security rule first to block traffic based on Apps or URL to other online storage sites. Now create another security rule right below the first one to allow the online storage sites which are needed to pass through. Some sites may need decryption enabled on PAN to identify the underlying app.</P><P></P><P><IMG alt="app-grp.PNG.png" class="jive-image" height="143" src="https://live.paloaltonetworks.com/legacyfs/online/9718_app-grp.PNG.png" style="width: 836.4150943396227px; height: 143px;" width="836" /></P><P><SPAN class="j-post-author" style="font-size: 0.9em; font-family: 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; color: #3b3b3b;"><BR /></SPAN></P><P>In regards to identifying which apps are falling under online storage, the better way is to use the Application page where in we can select each column like Category , Subcategory and so on to grill down the apps of certain type. This can be saved as a App group and used in your rules. </P><P></P><P>Thanks</P><H1 style="font-size: 26px; font-family: 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; color: #666666;"></H1></BODY></HTML> Tue, 12 Nov 2013 15:17:08 GMT https://live.paloaltonetworks.com/t5/general-topics/online-cloud-storage/m-p/15687#M11481 Phoenix 2013-11-12T15:17:08Z