For an example, I have 2 security policies ruleA) source ip: any, source zone: any, destination ip: any, destination zone: any, application: dns, service: any, action allow ruleB) source ip: any, source zone: any, destination ip: any, destination zone: any, application: any, service: any, action allow and traffic initiate from client is DNS request port53, my question is when Paloalto still not know the application yet (or application is incomplete), which policy will apply for the traffic? Pls share me a reference guide also, Thank you in advance
... View more