Palo Alto Networks Knowledgebase: PAN-OS 7.1 Policy behavior change application-default

PAN-OS 7.1 Policy behavior change application-default

9559
Created On 02/07/19 23:54 PM - Last Updated 02/07/19 23:54 PM
Resolution

In PAN-OS 7.1, when a security policy rule is configured with the Application setting 'Any' and the Service setting
'application-default', the rule Action is now applied only on the standard ports for any application.

 

For example, if a security policy rule is configured to allow any application traffic on the default application ports, web-browsing is allowed only on port 80.

 

In earlier PAN-OS release versions, the Service setting 'application-default' was not enforced when configured with the Application setting Any.



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFtCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language