03-31-2022 11:13 AM
Our programmer wrote an app that uses TCP/9901 and 9902 to transfer data between the East and West buildings. Let's call it JC-App. What is the minimum configuration on both the East and West Firewalls? Also, what would need to be added to require the use of Application Override ?? Thanks. jc
08-29-2022 05:27 AM
Hello,
If you do not wish the App to be checked for any attacks then use Application Override . If the application is HTTP based for example you can add web-browsing as the parent application for example so that app will be checked for web attacks:
Also the firewall will check the session for the inbound direction and the return traffic will be auto allowed so if the traffic only from east to west then you will need to add the security rule on inbound interface of the east fw and then on the interface on the west fw that the west fw talks with east firewall.
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClVECA0
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
