topic Re: Identifying applications inside ssl without decrypting in General Topics https://live.paloaltonetworks.com/t5/general-topics/identifying-applications-inside-ssl-without-decrypting/m-p/12900#M9452 <HTML><HEAD></HEAD><BODY><P>Hi</P><P></P><P>if you want your inbound SSL to fall under a different app ID without decrypting it, the way to do this would be create a custom app and settng an app override rule to reidentify this traffic into this custom app, alternatively you could reuse an existing app but this may cause confusion as ssl will show up as a completely different app</P><P></P><P>I would recommend decrypting this traffic as it is inbound and could thransport a threat into your network.</P></BODY></HTML> Tue, 22 Mar 2011 08:15:59 GMT reaper 2011-03-22T08:15:59Z Identifying applications inside ssl without decrypting https://live.paloaltonetworks.com/t5/general-topics/identifying-applications-inside-ssl-without-decrypting/m-p/12899#M9451 <HTML><HEAD></HEAD><BODY><P>We have a large amount of ssl traffic which we would like to better break out and identify for clearer reporting. For the most part this is inbound traffic destined to our public application servers, so we know what it is without decrypting it, but it's all lumped together with other "ssl" app traffic in the reports.</P><P></P><P>Can this be achieved with an app over-ride without defining a custom application, or is there another/better way?</P></BODY></HTML> Mon, 21 Mar 2011 21:24:22 GMT https://live.paloaltonetworks.com/t5/general-topics/identifying-applications-inside-ssl-without-decrypting/m-p/12899#M9451 KGC 2011-03-21T21:24:22Z Re: Identifying applications inside ssl without decrypting https://live.paloaltonetworks.com/t5/general-topics/identifying-applications-inside-ssl-without-decrypting/m-p/12900#M9452 <HTML><HEAD></HEAD><BODY><P>Hi</P><P></P><P>if you want your inbound SSL to fall under a different app ID without decrypting it, the way to do this would be create a custom app and settng an app override rule to reidentify this traffic into this custom app, alternatively you could reuse an existing app but this may cause confusion as ssl will show up as a completely different app</P><P></P><P>I would recommend decrypting this traffic as it is inbound and could thransport a threat into your network.</P></BODY></HTML> Tue, 22 Mar 2011 08:15:59 GMT https://live.paloaltonetworks.com/t5/general-topics/identifying-applications-inside-ssl-without-decrypting/m-p/12900#M9452 reaper 2011-03-22T08:15:59Z