Where is app-id for https?

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Where is app-id for https?

L3 Networker

I am trying to fulfill a request by my security team to enable app id on our palo alto rule base & I cannot find the app id for https.  There is also a machine inside our envirionment that needs to be accessed over tcp 444 using https:// so I assume enabling app id won't break communication to this machine as long as I specify port 444 in the rule.  Is that correct?

4 REPLIES 4

Cyber Elite
Cyber Elite

App name is ssl.

ssl default port is 443 so if your security policy allows apps on default port then you need additional rule App=ssl and Service=tcp/443

Enterprise Architect, Security @ Cloud Carib Ltd
Palo Alto Networks certified from 2011

please correct me if i am wrong.

 

if application  is ssl then we can use application default in service tab as ssl uses port tcp/443 right.

MP

Help the community: Like helpful comments and mark solutions.

Initial post told that https traffic (ssl AppID) needs to run over port 444.

In this case you need rule that permits that.

ssl and application-default allows only on 443.

Looks like I did typo in my initial reply. 443 should be 444.

Enterprise Architect, Security @ Cloud Carib Ltd
Palo Alto Networks certified from 2011

Thanks  a lot I got it now.

I should have also read the inital post.

MP

Help the community: Like helpful comments and mark solutions.
  • 10506 Views
  • 4 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!