We have Palo Alto firewalls, version 8.1.x. We heavily use Webex (application and physical boards), Jabber, and MS Teams both in the Corporate office and by GlobalProtect VPN users. I'm considering using Application Override for many of these Voice and Video applications, especially I see a large amount of cisco-spark-audio-video App-ID traffic as well as jabber, sip, ms-teams, and webex-base. In my lab, I created about two dozen Application Override policies specifying the protocol, port, and application, though when applied, I received shadowing warnings. I"m concerned if just the port number is being used, which some are port 443, 5004, and 33434. Could this affect common traffic, too, like web traffic, even though I specified the application? I feel these applications should not go through application inspection. What are others doing or have suggestions concerning these applications? I appreciate any help. Jeff
... View more