Why Set Application ID "apple-push-notifications", but gateway.sandbox.push.apple.com not working

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Why Set Application ID "apple-push-notifications", but gateway.sandbox.push.apple.com not working

L1 Bithead

hello~

I used the "apple-push-notifications" application id to add a new firewall rule. Afterwards, I found that the URL "gateway.sandbox.push.apple.com" is not working properly. Why?

 

Image Source:https://applipedia.paloaltonetworks.com/

螢幕快照 2019-07-23 上午8.54.36.png

1 accepted solution

Accepted Solutions

Hello,

No, the application only identifies the application. The other part is the URL filter. These are two seperate engines. You will need to find out why that URL is getting blocked then allow for it.

 

Regards,

View solution in original post

7 REPLIES 7

Cyber Elite
Cyber Elite
could you add a little information? How did you configure the security policy, and what abouyt the url did not work properly? When you try to access that URL, do you see the session being logged against that new security policy, are there any dropped connections being reported that belong to that session?
Tom Piens
PANgurus - Strata specialist; config reviews, policy optimization

set the  firewall rule is our network management, i just know there infomation...

Address:any

Application:apple-push-notifications

Service:any

URL Category:any

 

and we add other rule like this, it's work.

URL:api.sandbox.push.apple.com、gateway.sandbox.push.apple.com

port:443

 

I want to know if apple-push-notifications contains api.sandbox.push.apple.com, gateway.sandbox.push.apple.com?

Otherwise why would you want to set it separately?

 

 

Hello @reaper ,

I want to know if apple-push-notifications contains api.sandbox.push.apple.com, gateway.sandbox.push.apple.com?

can you provide information for me to understand?

Hello,

No, the application only identifies the application. The other part is the URL filter. These are two seperate engines. You will need to find out why that URL is getting blocked then allow for it.

 

Regards,

Thank you, I will find problems from URL filter.

L1 Bithead

apple push notifications some time use port 2195

L1 Bithead
  • 1 accepted solution
  • 6269 Views
  • 7 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!