What Are All the Predefined Applications That Create Predict Sessions or Require ALG?

Created On 04/26/19 10:15 AM - Last Modified 05/15/19 07:44 AM

Applications

Administration

App-ID

Content Release

PAN-OS

Question

What are all the predefined applications that create predict sessions or require ALG?
Application Level Gateway (ALG) is used to open a pinhole for a limited time and for exclusively transferring data or control traffic.

Answer

To get the list of all applications that are ALG capable or would create a predict session, follow the sequence below:

admin@Firewall> set cli config-output-format set
admin@Firewall> configure
Entering configuration mode
[edit]                                                                                                                                           
admin@Firewall# show predefined application | match "alg yes"
<snip>
set predefined application 104asdu-file-transfer-type120 alg yes
set predefined application 104asdu-file-transfer-type121 alg yes
set predefined application 104asdu-file-transfer-type122 alg yes
set predefined application 104asdu-file-transfer-type123 alg yes
set predefined application 104asdu-file-transfer-type124 alg yes
set predefined application 104asdu-file-transfer-type125 alg yes
set predefined application 104asdu-file-transfer-type126 alg yes
set predefined application 104asdu-file-transfer-type127 alg yes
set predefined application 104asdu-param-control-type110 alg yes
<snip>

Additional Information

For additional information on predict sessions, please refer to the following articles:
Palo Alto Networks Firewall Session Overview
Session States and Types

As of 8146-5421 and PAN-OS 9.0.1, 313 applications are ALG capable. Here is a list of applications extracted by using the procedure shown above.

104asdu-file-transfer-type120

104asdu-file-transfer-type121

104asdu-file-transfer-type122

104asdu-file-transfer-type123

104asdu-file-transfer-type124

104asdu-file-transfer-type125

104asdu-file-transfer-type126

104asdu-file-transfer-type127

104asdu-param-control-type110

104asdu-param-control-type111

104asdu-param-control-type112

104asdu-param-control-type113

104asdu-process-control-type45

104asdu-process-control-type46

104asdu-process-control-type47

104asdu-process-control-type48

104asdu-process-control-type49

104asdu-process-control-type50

104asdu-process-control-type51

104asdu-process-control-type58

104asdu-process-control-type59

104asdu-process-control-type60

104asdu-process-control-type61

104asdu-process-control-type62

104asdu-process-control-type63

104asdu-process-control-type64

104asdu-process-monitor-type1

104asdu-process-monitor-type10

104asdu-process-monitor-type11

104asdu-process-monitor-type12

104asdu-process-monitor-type13

104asdu-process-monitor-type14

104asdu-process-monitor-type15

104asdu-process-monitor-type16

104asdu-process-monitor-type17

104asdu-process-monitor-type18

104asdu-process-monitor-type19

104asdu-process-monitor-type2

104asdu-process-monitor-type20

104asdu-process-monitor-type21

104asdu-process-monitor-type3

104asdu-process-monitor-type30

104asdu-process-monitor-type31

104asdu-process-monitor-type32

104asdu-process-monitor-type33

104asdu-process-monitor-type34

104asdu-process-monitor-type35

104asdu-process-monitor-type36

104asdu-process-monitor-type37

104asdu-process-monitor-type38

104asdu-process-monitor-type39

104asdu-process-monitor-type4

104asdu-process-monitor-type40

104asdu-process-monitor-type5

104asdu-process-monitor-type6

104asdu-process-monitor-type7

104asdu-process-monitor-type8

104asdu-process-monitor-type9

104asdu-system-control-type100

104asdu-system-control-type101

104asdu-system-control-type102

104asdu-system-control-type103

104asdu-system-control-type104

104asdu-system-control-type105

104asdu-system-control-type106

104asdu-system-control-type107

104asdu-system-monitor-type70

8x8

adobe-meeting

aim-base

aim-audio

ali-wangwang-base

amqp

aol-proxy

apache-jserv

apple-remote-desktop

asproxy

avaya-webalive-base

azureus

bacnet-ack-alarm

bacnet-add-list-element

bacnet-atomic-read-file

bacnet-atomic-write-file

bacnet-authenticate

bacnet-confirmed-cov-notify

bacnet-confirmed-event-notify

bacnet-confirmed-private-xfer

bacnet-confirmed-text-message

bacnet-create-object

bacnet-delete-object

bacnet-device-comm-control

bacnet-get-alarm-summary

bacnet-get-enrollment-summary

bacnet-get-event-information

bacnet-life-safety-operation

bacnet-read-prop-conditional

bacnet-read-prop-multiple

bacnet-read-property

bacnet-read-range

bacnet-reinitialize-device

bacnet-remove-list-element

bacnet-request-key

bacnet-subscribe-cov

bacnet-subscribe-cov-property

bacnet-vt-close

bacnet-vt-data

bacnet-vt-open

bacnet-write-prop-multiple

bacnet-write-property

bigupload

bittorrent

bomgar

brass

buddybuddy-base

capwap

chatroulette

cip-ethernet-ip-base

cip-ethernet-ip-list-identity

cip-ethernet-ip-reg-session

cip-ethernet-ip-send-rr-data

cip-ethernet-ip-send-unit-data

citrix-jedi

convo-base

corba

cotp

cyber-ark-vault

dhcp

dialpad

dicom

discard

dns

ed137-base

ed137-ptt-off-squ-off

ed137-ptt-off-squ-on

ed137-ptt-on-squ-off

ed137-ptt-on-squ-on

epeachtree

epmd

ezpeer

factset

fetion-base

fileserve

freegate

freenet

ftp

fuze-meeting-base

gatherplace-base

gb2pp-base

gb2pp-ptt-off

gb2pp-ptt-on

gb2pp-tone-off

gb2pp-tone-on

gdbremote

ge-cic-xml

globalmeet-base

gnutella

google-talk-base

gtalk-file-transfer

gtalk-voice

gtp-base

gtp-prime

gtp-u

gtpv0

gtpv1-c

gtpv2-c

h.225

h.245

h.248

hdfs

http-nsri

http-tunnel

ibm-soliddb

icmp

icq

iec-60870-5-104-base

ike

imap

ip-messenger-base

ipsec-esp-udp

ipv6

irc-base

jabber

jumpdesktop

kugoo

laconica

ldap

league-of-legends

lifesize

llmnr

logmein

lpd

lwapp

m3ua

mail.ru-agent-base

maplestory

mgcp

mms

modbus-base

modbus-encapsulated-transport

modbus-mask-write-register

modbus-read-coils

modbus-read-file-record

modbus-read-holding-registers

modbus-read-input-registers

modbus-read-write-register

modbus-write-file-record

modbus-write-single-coil

mongodb

ms-kms

msn-file-transfer

msn-voice

msrpc-base

mssql-db-base

mssql-db-encrypted

mssql-db-unencrypted

mssql-mon

net.tcp

net2phone

netbios-ns

nfs

nntp

ntp

open-vpn

oracle

oracle-bi

paltalk-base

pcanywhere-base

pcanywhere-file-transfer

pcanywhere-remote-control

phproxy

ping

ping-tunnel

playstation-network

poct1-a

popo-im

pptp

progress-openedge

qik-base

qq-download

qqlive

radius

rdio

realtunnel

rediffbol-base

rediffbol-file-transfer

ringcentral

rpc

rstatd

rtmp

rtmpt

rtsp

rusers

sccp

sctp

security-kiss

share-p2p

siemens-s7-base

siemens-s7-check-password-set

siemens-s7-read

siemens-s7-setup-communication

siemens-s7-start

siemens-s7-status-controller

siemens-s7-stop

silverlight

simplify

sina-uc-base

sina-uc-file-transfer

sip

sip-trunk

sipcli

sipviaheader-nat

skype-probe

smtp

snmp-base

snmp-trap

socks

softros-messenger-base

softros-messenger-file-transfer

splashtop-remote

spotify

ssh

ssl

steganos-vpn

stun

subspace

swiftmq

sybase

t.120

tales-runner

teamviewer-base

telnet

tftp

time

unistim

unknown-tcp

viber-base

viber-voice

vidsoft

vnc-base

vnc-clipboard

vnc-encrypted

vnc-filetransfer

vnc-print

websocket

wechat-base

weiyun-base

xbox-live

xunlei

yahoo-im-base

yoics

ypserv

yy-voice-base

zelune

What Are All the Predefined Applications That Create Predict Sessions or Require ALG?

Question

Answer

Additional Information

Other users also viewed: