Error:
An unexpected error occurred. Please click Reload to try again.
Error:
An unexpected error occurred. Please click Reload to try again.
What Are All the Predefined Applications That Create Predict Se... - Knowledge Base - Palo Alto Networks

What Are All the Predefined Applications That Create Predict Sessions or Require ALG?

0
Created On 04/26/19 10:15 AM - Last Modified 05/15/19 07:44 AM


Question


What are all the predefined applications that create predict sessions or require ALG?
Application Level Gateway (ALG) is used to open a pinhole for a limited time and for exclusively transferring data or control traffic.

 


Answer


To get the list of all applications that are ALG capable or would create a predict session, follow the sequence below:
admin@Firewall> set cli config-output-format set
admin@Firewall> configure
Entering configuration mode
[edit]                                                                                                                                           
admin@Firewall# show predefined application | match "alg yes"
<snip>
set predefined application 104asdu-file-transfer-type120 alg yes
set predefined application 104asdu-file-transfer-type121 alg yes
set predefined application 104asdu-file-transfer-type122 alg yes
set predefined application 104asdu-file-transfer-type123 alg yes
set predefined application 104asdu-file-transfer-type124 alg yes
set predefined application 104asdu-file-transfer-type125 alg yes
set predefined application 104asdu-file-transfer-type126 alg yes
set predefined application 104asdu-file-transfer-type127 alg yes
set predefined application 104asdu-param-control-type110 alg yes
<snip>


 


Additional Information


For additional information on predict sessions, please refer to the following articles:
Palo Alto Networks Firewall Session Overview
Session States and Types

As of 8146-5421 and PAN-OS 9.0.1, 313 applications are ALG capable. Here is a list of applications extracted by using the procedure shown above.
104asdu-file-transfer-type120
104asdu-file-transfer-type121
104asdu-file-transfer-type122
104asdu-file-transfer-type123
104asdu-file-transfer-type124
104asdu-file-transfer-type125
104asdu-file-transfer-type126
104asdu-file-transfer-type127
104asdu-param-control-type110
104asdu-param-control-type111
104asdu-param-control-type112
104asdu-param-control-type113
104asdu-process-control-type45
104asdu-process-control-type46
104asdu-process-control-type47
104asdu-process-control-type48
104asdu-process-control-type49
104asdu-process-control-type50
104asdu-process-control-type51
104asdu-process-control-type58
104asdu-process-control-type59
104asdu-process-control-type60
104asdu-process-control-type61
104asdu-process-control-type62
104asdu-process-control-type63
104asdu-process-control-type64
104asdu-process-monitor-type1
104asdu-process-monitor-type10
104asdu-process-monitor-type11
104asdu-process-monitor-type12
104asdu-process-monitor-type13
104asdu-process-monitor-type14
104asdu-process-monitor-type15
104asdu-process-monitor-type16
104asdu-process-monitor-type17
104asdu-process-monitor-type18
104asdu-process-monitor-type19
104asdu-process-monitor-type2
104asdu-process-monitor-type20
104asdu-process-monitor-type21
104asdu-process-monitor-type3
104asdu-process-monitor-type30
104asdu-process-monitor-type31
104asdu-process-monitor-type32
104asdu-process-monitor-type33
104asdu-process-monitor-type34
104asdu-process-monitor-type35
104asdu-process-monitor-type36
104asdu-process-monitor-type37
104asdu-process-monitor-type38
104asdu-process-monitor-type39
104asdu-process-monitor-type4
104asdu-process-monitor-type40
104asdu-process-monitor-type5
104asdu-process-monitor-type6
104asdu-process-monitor-type7
104asdu-process-monitor-type8
104asdu-process-monitor-type9
104asdu-system-control-type100
104asdu-system-control-type101
104asdu-system-control-type102
104asdu-system-control-type103
104asdu-system-control-type104
104asdu-system-control-type105
104asdu-system-control-type106
104asdu-system-control-type107
104asdu-system-monitor-type70
8x8
adobe-meeting
aim-base
aim-audio
ali-wangwang-base
amqp
aol-proxy
apache-jserv
apple-remote-desktop
asproxy
avaya-webalive-base
azureus
bacnet-ack-alarm
bacnet-add-list-element
bacnet-atomic-read-file
bacnet-atomic-write-file
bacnet-authenticate
bacnet-confirmed-cov-notify
bacnet-confirmed-event-notify
bacnet-confirmed-private-xfer
bacnet-confirmed-text-message
bacnet-create-object
bacnet-delete-object
bacnet-device-comm-control
bacnet-get-alarm-summary
bacnet-get-enrollment-summary
bacnet-get-event-information
bacnet-life-safety-operation
bacnet-read-prop-conditional
bacnet-read-prop-multiple
bacnet-read-property
bacnet-read-range
bacnet-reinitialize-device
bacnet-remove-list-element
bacnet-request-key
bacnet-subscribe-cov
bacnet-subscribe-cov-property
bacnet-vt-close
bacnet-vt-data
bacnet-vt-open
bacnet-write-prop-multiple
bacnet-write-property
bigupload
bittorrent
bomgar
brass
buddybuddy-base
capwap
chatroulette
cip-ethernet-ip-base
cip-ethernet-ip-list-identity
cip-ethernet-ip-reg-session
cip-ethernet-ip-send-rr-data
cip-ethernet-ip-send-unit-data
citrix-jedi
convo-base
corba
cotp
cyber-ark-vault
dhcp
dialpad
dicom
discard
dns
ed137-base
ed137-ptt-off-squ-off
ed137-ptt-off-squ-on
ed137-ptt-on-squ-off
ed137-ptt-on-squ-on
epeachtree
epmd
ezpeer
factset
fetion-base
fileserve
freegate
freenet
ftp
fuze-meeting-base
gatherplace-base
gb2pp-base
gb2pp-ptt-off
gb2pp-ptt-on
gb2pp-tone-off
gb2pp-tone-on
gdbremote
ge-cic-xml
globalmeet-base
gnutella
google-talk-base
gtalk-file-transfer
gtalk-voice
gtp-base
gtp-prime
gtp-u
gtpv0
gtpv1-c
gtpv2-c
h.225
h.245
h.248
hdfs
http-nsri
http-tunnel
ibm-soliddb
icmp
icq
iec-60870-5-104-base
ike
imap
ip-messenger-base
ipsec-esp-udp
ipv6
irc-base
jabber
jumpdesktop
kugoo
laconica
ldap
league-of-legends
lifesize
llmnr
logmein
lpd
lwapp
m3ua
mail.ru-agent-base
maplestory
mgcp
mms
modbus-base
modbus-encapsulated-transport
modbus-mask-write-register
modbus-read-coils
modbus-read-file-record
modbus-read-holding-registers
modbus-read-input-registers
modbus-read-write-register
modbus-write-file-record
modbus-write-single-coil
mongodb
ms-kms
msn-file-transfer
msn-voice
msrpc-base
mssql-db-base
mssql-db-encrypted
mssql-db-unencrypted
mssql-mon
net.tcp
net2phone
netbios-ns
nfs
nntp
ntp
open-vpn
oracle
oracle-bi
paltalk-base
pcanywhere-base
pcanywhere-file-transfer
pcanywhere-remote-control
phproxy
ping
ping-tunnel
playstation-network
poct1-a
popo-im
pptp
progress-openedge
qik-base
qq-download
qqlive
radius
rdio
realtunnel
rediffbol-base
rediffbol-file-transfer
ringcentral
rpc
rstatd
rtmp
rtmpt
rtsp
rusers
sccp
sctp
security-kiss
share-p2p
siemens-s7-base
siemens-s7-check-password-set
siemens-s7-read
siemens-s7-setup-communication
siemens-s7-start
siemens-s7-status-controller
siemens-s7-stop
silverlight
simplify
sina-uc-base
sina-uc-file-transfer
sip
sip-trunk
sipcli
sipviaheader-nat
skype-probe
smtp
snmp-base
snmp-trap
socks
softros-messenger-base
softros-messenger-file-transfer
splashtop-remote
spotify
ssh
ssl
steganos-vpn
stun
subspace
swiftmq
sybase
t.120
tales-runner
teamviewer-base
telnet
tftp
time
unistim
unknown-tcp
viber-base
viber-voice
vidsoft
vnc-base
vnc-clipboard
vnc-encrypted
vnc-filetransfer
vnc-print
websocket
wechat-base
weiyun-base
xbox-live
xunlei
yahoo-im-base
yoics
ypserv
yy-voice-base
zelune


 


Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PLnvCAG&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail