Is it possible to create a File-blocking profile based on a port, instead of File or Application type?

Is it possible to create a File-blocking profile based on a port, instead of File or Application type?

1810
Created On 08/27/20 19:42 PM - Last Modified 06/19/23 08:28 AM


Question


Is it possible to create a File-blocking profile based on a port, instead of File or Application type?

Environment


  • Palo Alto Firewalls
  • Supported PAN-OS
  • Layer7 Inspection
  • File blocking profile

Answer


  1. In the File Blocking Profile only "application" and "File Type" can be specified.
  2. File blocking based on source or destination port number is not supported.
  3. Blocking upload/downloads to certain destination ports can be achieved using the security policy. Just add the port information in the "Service/URL Category" under the Service Column.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HAXQCA4&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail