Story Bank
Bite-sized video Stories to simplify SASE use cases, solve challenges, and maximize value
Discussions
Discussions and questions regarding Cato Networks and SASE
Best Practices
Find Cato Networks best practices, tips, tricks, and other helpful information!
Recent Content
Cato SDP Client to be auto intelligent to login instead of manual logging
I have recently migrated from Netskope to Cato Networks. One issue we have noticed is that users need to login once to Cato SDP client and then "Always-on policy" gets enabled. But users are smart, they don't login to SDP client itself as many sites gets blocked as per policy which they don't want so they don't login once also to SDP client thus making us non-compliant as absence of SDP client makes them vulnerable as they can browse malicious sites as well as can upload company data on public sites which typically gets blocked when connected over SDP client. In Netskope, we just had to push agents to the laptop and no user intervention was required, it automatically detects logged in user credentials so there was no scope for user to not login or bypass security controls. Can't we make zero touch experience for user so that there is no room for escape or delay as now we are totally dependent on user.28Views0likes5CommentsAbout arranging items in "App Analytics"
Hello team, "Applications" tab in Monitoring - App Analytics of CMA Regarding usage by application, when sorting by "Risk", could you tell us what the order of items with the same Risk score is based on? When sorting by the same Risk score, it seems that the order of items is not tied to application name, Upload/Download, or Users/Hosts. Regards, Naoto Adachi6Views0likes0CommentsDifferences in routing time between Internet Recovery and WAN Recovery
Hello. This is the first post of the new Cato community. Recently, we verified how long it takes for Internet Recovery and WAN Recovery to switch communication paths. They found that Internet Recovery bypasses Internet communication after about 35 to 40 seconds and WAN Recovery transitions to an off-cloud tunnel in about 5 seconds. I understand the switch time is fast because WAN Recovery just switches to an already established Off-Cloud tunnel. Why does it take about 40 seconds for Internet Recovery to switch?39Views0likes2CommentsNew to Cato? Check out this introductory course!
Whether your organization just moved to Cato, or you're a new member in the team, start fresh with this short training on how to build a simple network using the Cato Cloud: Building your first network with Cato Feedback is welcome! and you're more than encouraged to discuss:)7Views0likes0CommentsSplit Tunnel basis FQDN/Domain
I am facing some issue wherein I am not able to browse some government site. There was an article on the same as well. As of now , I have configured split tunnel basis exclude IP and I have excluded IP address of one of the website of Government but this is not going to work as I have multiple websites of government which is not opening. Why there is no option to bypass or split tunnel basis FQDN or domain then I can exclude traffic for Government sites as it becomes a task for doing split tunnel basis individual IP address. Is it on road map as well or not?57Views0likes2CommentsBypass CATO Cloud (YouTube)
Hello, I am trying to configure youtube traffic to egress onto the open internet and not through the cato tunnel. Has someone ever done something like this before? Youtube is maxing out our allocated bandwidth and would like to know if this is even possible.11Views0likes1CommentWhat's new at Cato? 2nd December 2024
"Hey Robin, what's new at Cato this week?" Great question! I was with a customer recently and they said they find it hard to keep up with the 'pace' of Cato NetworksThat's understandable, there's release notes and new innovations coming out at a rapid race. We're not industry leaders for no reason! Luckily, I'll give you what you need to know in under a minute 😀 Too long still? Have the key bits of info: 1️⃣ Dynamic IP Allocation Policy: Introduced a rule-based system for assigning IP ranges to clients, with multi-admin editing and full API support for streamlined network management. 2️⃣ Enhanced Off Cloud Traffic Visibility: Real-time status updates for Off Cloud tunnels, allowing admins to monitor active Socket sites and assess WAN resiliency with ease. Read the full release notes here: https://support.catonetworks.com/hc/en-us/articles/23406018337949-Product-Update-December-2-2024 Is there something you want to know more about? Let me know, I'm always looking for content ideas!19Views0likes0CommentsUse Case: Block Youtube category but allow some specific youtube video ID(full path url)
Hi All, I am exploring the way to block all youtube but allow some specific youtube video id. The full path url is configured in Application Control policy with action allow and the youtube category is block in Internet Firewall policy. It is not working because application control only take effect with the traffic is allowed in Internet Firewall policy. FYI, full path url is not configureable in Internet Firewall policy. Appreciate if anyone from community can give some ideas. Thanks.47Views0likes5CommentsWhat's new at Cato? 25th November 2024
"Hey Robin, what's new at Cato Networks this week?" Great question, have a sub-1 minute video giving you a digest of the latest and greatest. Naturally, you can find a full list on our Knowledge Base here:https://support.catonetworks.com/hc/en-us/articles/23222708288157-Product-Update-November-25-2024 Don't forget - it's Thanksgiving in the US this Thursday, so let's reflect on the things we're thankful for: 1) Cato's rapid product development which helps keep us secure, protected and connected 2) Star Wars 3) Memes Happy Monday ya'll! 🦃30Views3likes0Comments