Newish user to PA's 1 year now I think.
I came from cisco - ip / port acl's
I am trying to move to app-id nicer easier policies.
So for office traffic I use app-id
for my prod platform I use applicaiton overide to custom applications, so that I can by pass any inspection . I care more about speed and latency.
For example my developer use artifcatory - http access. with inspection on compilation time could be 5-6 min. with it off might be 60-90sec. Thats just cause some much traffic is sent. << Actually did this with a custom app-id
so our platfrom is typical Internet -> fw -> reverse proxy -> app ... I don't want to inspect the traffic.
but I am also happy to relook at stuff. how much extra processing does app-id custom signatures take.. how do you create custom id's for developer written protocols ?
does it just look at the first x bytes / packets ??
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!