Hey everyone! I couldn't find a specific community for CATO, so I'm hoping to get some insights here. Is there any resource available that lists all the commonly-used predefined applications and services in CATO? I know a few like HTTP(S) which use ports 80 and 443, but I'd love to know about the others too!
2 Answers
Unfortunately, they don't provide a straightforward list. You might have to submit support tickets to get that info. If you're used to a standard Layer 7 application product, you might find CATO's setup confusing. Their 'apps' are essentially just the main DNS names from the providers. For instance, permitting 'miro' through the firewall lets all TCP and UDP traffic for miro.com through. If you need to manage internal traffic, you’ll likely need to create custom apps or set rules by TCP/UDP ports in your WAN firewall. Just a heads up, CATO doesn’t handle having the same domain linked to multiple applications very well. If you add 'Microsoft.com' to a custom app, it could mess up your existing rules that use their pre-defined Microsoft apps, even if those rules are set to allow access. Honestly, it feels like the whole system is poorly designed.
I just checked my CATO account and currently, there are 294 services, 572 applications, and a whopping 14,786 cloud applications available. It's a lot to sift through!
Haha, thanks for the heads up! I was kind of afraid to hear that. What do you think about using a compact custom service definition like 'TCP_UDP/389,636,3268,3269'? It seems simpler than dealing with a long list of single port custom services!