Recent Discussions
What is the difference between App Control Rule "Allow + Tracking: Event Enable" and "Monitor"?
In the *App & Data Inline* -> *Application Control Policy*, we have configured the rule as follows: - **Action: Allow** - **Tracking: Event** (Enabled) However, under this configuration, **no events are shown in the Events screen**. Is this the expected behavior? We are confused because there is also an **Action: Monitor** option, yet "Allow" can also be configured with Tracking enabled or disabled. Could you clarify the functional difference between these two actions and how they affect event logging?Naoki2 days agoMeteor26Views0likes2CommentsUse Case- Bypass internal application access through CATO when in office
I have been using Netskope where there is feature of split tunneling wherein when it detects that you are in office network then you can disable remote access and the traffic to internal application will be routed using your office MPLS/ILL thus only internet traffic going to CATO but when same users are working from home then both remote access as well as internet traffic goes via Netskope. Now with CATO, there is no option with me to exclude traffic going to CATO POP except IP ranges but I want the same experience that when users is in office, only internet traffic goes through CATO and not private access. I want this spliting done through CATO SDP client as I dont have any site license.PrakashRIndia3 days agoMeteor200Views0likes4CommentsIs there a way to restrict access to the WebUI?
Hi all, Some of our customers want to restrict access to the Web UI from the local networks of the socket. However, even though I write LAN FW rules, the local IPs will respond to the HTTPs request from every network on the LAN port, even if that is a guest network. Is there any way to restrict access to the WebUI? If not, isn't such a configuration necessary? Thank you,Solved45Views0likes4CommentsLAN NGFW and Segmentation
Hi all, This is probably a dumb question but I was looking at the recent news about Cato supporting LAN NGFW and checking EAST-WEST traffic. My question is, does this mean the Cato Sockets act as the Gateway for each VLAN? I'm just wondering how the sockets would cope with the amount of traffic going through them and getting inspected. But maybe I'm off base entirely.Solved40Views0likes2CommentsClient does not connect automatically after sleep or or boot up when always-on is enabled
Hi All, Anyone facing issue of windows client does not connect automatically after sleep or boot up when always-on is enabled? This issue happen randomly. Please refer to screenshot below: Thanks.SolvedSoon10 days agoComet38Views0likes1CommentSplit Tunnel basis FQDN/Domain
I am facing some issue wherein I am not able to browse some government site. There was an article on the same as well. As of now , I have configured split tunnel basis exclude IP and I have excluded IP address of one of the website of Government but this is not going to work as I have multiple websites of government which is not opening. Why there is no option to bypass or split tunnel basis FQDN or domain then I can exclude traffic for Government sites as it becomes a task for doing split tunnel basis individual IP address. Is it on road map as well or not?PrakashRIndia15 days agoMeteor244Views0likes5Comments- The_Halpern17 days agoCato Employee14Views1like0Comments
Cato Product Rewind
Join us for Product Rewind, a fast-paced monthly webinar where we break down the most compelling product updates from March 2025. See the latest innovations in action with live demos and get practical insights on how these updates can enhance your experience. Register now in Cato Academy: https://academy.catonetworks.com/product-monthly-rewind-march-2025OrenD17 days agoCato Employee66Views1like1CommentService contents and definitions
Is there a chart or table detailing the exact ports included in the predefined Services? For a simple example, if I create a WAN Firewall Rule or Exception utilizing the Service 'Microsoft Netlogon', what exactly am I (well, actually CATO) Allowing / Blocking?Brad17 days agoComet59Views0likes4Comments