Where is app-id for https?

Reply
Highlighted
L3 Networker

Where is app-id for https?

I am trying to fulfill a request by my security team to enable app id on our palo alto rule base & I cannot find the app id for https.  There is also a machine inside our envirionment that needs to be accessed over tcp 444 using https:// so I assume enabling app id won't break communication to this machine as long as I specify port 444 in the rule.  Is that correct?

Tags (1)
L7 Applicator

Re: Where is app-id for https?

App name is ssl.

ssl default port is 443 so if your security policy allows apps on default port then you need additional rule App=ssl and Service=tcp/443

Enterprise Architect @ Cloud Carib www.cloudcarib.com
ACE (3.0, 5.0, 6.0, 7.0), PCNSE (6, 7), PCNSI
L4 Transporter

Re: Where is app-id for https?

please correct me if i am wrong.

 

if application  is ssl then we can use application default in service tab as ssl uses port tcp/443 right.

L7 Applicator

Re: Where is app-id for https?

Initial post told that https traffic (ssl AppID) needs to run over port 444.

In this case you need rule that permits that.

ssl and application-default allows only on 443.

Looks like I did typo in my initial reply. 443 should be 444.

Enterprise Architect @ Cloud Carib www.cloudcarib.com
ACE (3.0, 5.0, 6.0, 7.0), PCNSE (6, 7), PCNSI
L4 Transporter

Re: Where is app-id for https?

Thanks  a lot I got it now.

I should have also read the inital post.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!