10-26-2018 12:47 PM
I am trying to fulfill a request by my security team to enable app id on our palo alto rule base & I cannot find the app id for https. There is also a machine inside our envirionment that needs to be accessed over tcp 444 using https:// so I assume enabling app id won't break communication to this machine as long as I specify port 444 in the rule. Is that correct?
10-26-2018 12:54 PM
App name is ssl.
ssl default port is 443 so if your security policy allows apps on default port then you need additional rule App=ssl and Service=tcp/443
10-27-2018 05:59 PM - edited 10-27-2018 06:00 PM
please correct me if i am wrong.
if application is ssl then we can use application default in service tab as ssl uses port tcp/443 right.
10-28-2018 07:34 AM - edited 10-28-2018 07:49 AM
Initial post told that https traffic (ssl AppID) needs to run over port 444.
In this case you need rule that permits that.
ssl and application-default allows only on 443.
Looks like I did typo in my initial reply. 443 should be 444.
10-28-2018 07:45 AM
Thanks a lot I got it now.
I should have also read the inital post.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
