https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/206378#M60567 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/4746">@zthiel</a>,</P><P>I don't know enough about how commvault is actually configured to properly answer that question. I would assume that it's to do with the fact that you can customize commvault's ports and that it doesn't utilize only a standard set of ports by default?&nbsp;</P> Mon, 19 Mar 2018 15:57:22 GMT BPry 2018-03-19T15:57:22Z https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/205932#M60445 <P>Curious if anyone is successfully using the commvault application within their Palo Alto application policies? We tried it and it is not working at all to detect our CommVault application traffic. The details on the application itself seem quite old.</P> Fri, 16 Mar 2018 14:03:00 GMT https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/205932#M60445 zthiel 2018-03-16T14:03:00Z https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/205961#M60459 <P>was there a related question about custom signatures? <span class="lia-unicode-emoji" title=":face_with_tongue:">😛</span></P> <P>&nbsp;</P> <P>the commvault app was last updated in august, so it's possible something was changed in the latest incarnation that causes it to not be identigfied properly in App-ID, you could reach out to support to have this investigated (they'll need packetcaptures and logs to verify)</P> Fri, 16 Mar 2018 15:01:47 GMT https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/205961#M60459 reaper 2018-03-16T15:01:47Z https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/206026#M60488 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/4746">@zthiel</a>,</P><P>Or if you really hate dealing with support and simply want the traffic to identify as CommVault, you could do like I've done and simply utilize an Application override policy and setup the traffic to match to commvault. It's lazy and stops the inspection at Layer4, but I still get to yell at my backup admin for using an ass-ton of bandwidth <span class="lia-unicode-emoji" title=":winking_face:">😉</span>&nbsp;</P> Fri, 16 Mar 2018 17:05:10 GMT https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/206026#M60488 BPry 2018-03-16T17:05:10Z https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/206371#M60566 <P>I'm just confused as to why the standard ports are:&nbsp;<SPAN>tcp/dynamic and not itimized out ports\protocols.</SPAN></P> Mon, 19 Mar 2018 15:51:06 GMT https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/206371#M60566 zthiel 2018-03-19T15:51:06Z https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/206378#M60567 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/4746">@zthiel</a>,</P><P>I don't know enough about how commvault is actually configured to properly answer that question. I would assume that it's to do with the fact that you can customize commvault's ports and that it doesn't utilize only a standard set of ports by default?&nbsp;</P> Mon, 19 Mar 2018 15:57:22 GMT https://live.paloaltonetworks.com/t5/general-topics/custom-application-signatures/m-p/206378#M60567 BPry 2018-03-19T15:57:22Z