Recent Content
"Record Issue" button - what is it for?
The Cato Windows client has included a "Record Issue" button for a long time - but is it actually of any practical use? Whenever I have submitted a support ticket I am never asked to make use of this, but rather been asked to perform a SSS (which is not at all very convenient, especially when attempting to explain to a remote end user how to perform those steps). I now see that the addition of such a button is touted as a major new feature for the macOS Client v5.8 - does this mean that it might actually have become usable for the Windows client as well?
Logs from Azure are encrypted on Qradar
Hello everyone we are integrating CATO to send events to an azure and from there our SIEM service will collect the logs using Qradar. The workflow is: Cato > container > logic app > event hub. we are getting logs on Qradar but they seem to be encrypted. when we download the logs from the container to a local PC they are readable. this is my first attempt with azure integration so i have no idea where too start.. ThanksFor Beta queries
When I query for revisions in InternetFirewallPolicyQueries, I get the error "Operation Failed: received non-200 OK status code [500]. Is there any solution? I have confirmed that the AccountID is correct, but this query is still in Beta version, so I think it might not be able to execute yet.
Always on VPN and troubleshooting connectivity issues
Hi, I wanted to check if anyone else have experienced issues with the users enabled for Always On when their SDP client can not connect. Ocasionaly we see clients can not connect showing different errors, like username not recognized, can not connect, etc. The problem is that our Zoho Assist remote management software is not available if the user laptop is not connected to Internet which it is not when using Always On. How do you guys provide support in this scenario? What we usually do is first disable Always on policy for that user and then re-install the CAto client using either local admin or service desk user account. The problem is that we need to change the passwords to those accounts after giving out to the user by phone. Basically we just need Zoho Assist client traffic to bypass Cato tunnel, we will be testing split tunnel feature and adding Zoho IPs to bypass. Curious to hear your thoughts. Thanks!
Setting up custom email alerts for changes in CMA
We would like to see email alerts when either of the following changes are made in the Cato Management App Firewall policies are added/modified Routing changes are made. changes are made to the TLS inspection policy Any other changes that could affect the security profile How can we setup such email alertsConnectivity Alert Email - Interface Names
Hello, By default, the notification emails regarding a disconnected or degraded socket interface include the public IP address of the interface under "Interface Name". This does not match the port name in the socket configuration panel. Is it possible to modify this email template to include the descriptive name instead of, or ideally in addition to, the public IP address? This would be extremely helpful for quickly identifying which ISP is impacted. Not all network engineers have every single public IP in the company committed to memory! (Pictures have been redacted/edited to remove or alter sensitive information)Event logs limited to 100 events only
On theevents page in CMA, only the most recent 100 events are visible. Srolling though earlier events is not available. In order to search for earlier events you need to set filters, and even then only 100 events are listed. In normal day hundreds of thousands of events are generated. It would be helpful if we could just scroll though the events and do deeper dive into events that need attention. Rather than have to guess which filters to apply when troublshooting an issue.
LAN Firewall rules - missing "IP range" in src/dst
Anyone else missing an ability to use Custom IP Range as a source or destination in LAN Firewall rule? We use CATO LAN Firewall to control traffic between two separate network zones terminated on two different internal firewalls. Since this is a local traffic in the site, we don't want to route it to Cato Cloud so it's not dependent on WAN links. That's why we use CATO LAN Firewall (formerly Local Routing). But the only options to set Source or Destination are: Global range, Host, Interface subnet, Network Interface and Any. Would be very useful if we can use Custom IP ranges and Host Groups there.
