Community Help
Community guides and FAQs
Recent Content
Announcement: Introducing Cato Connect's new Idea Hub
We’re excited to introduce the Idea Hub to Cato Connect! This is a space where you can share your ideas, collaborate with fellow members, and vote on suggestions that resonate with you. What is the Idea Hub? The Idea Hub is a forum for brainstorming and discussing ideas that could enhance our products, services, or overall customer experience. Explain your use-case and issue in detail so your fellow Cato Connect members can expound on the idea or even share workaround or solutions. By voting and commenting, we can surface the ideas that are truly important to our community with context and relevant use cases and examples. What happens once an idea is created? The Idea Hub is the beginning of a journey - a starting point for a discussion. Once you have submitted an idea to the Idea Hub, your fellow Cato Connect members will vote and comment on the idea. Perhaps they might even offer a solution or a workaround, or point you to another idea in the Hub about a similar problem to the one you noticed. Each comment and vote creates a more robust story for the Cato Networks Team to discuss, so don't skimp on the details. How Does It Differ from RFEs (Requests for Enhancements)? Idea Hub: A collaborative space for discussion, exploration, and voting on ideas. It’s designed to capture a wide range of feedback and innovation. RFEs: A formal process for submitting specific, detailed enhancement requests - opened by Cato Networks Employees on behalf of customers in certain circumstances. By keeping these two processes separate, we ensure that both can operate effectively to meet your needs. Further FAQs can be found here. Thank you for contributing to this new initiative! We can’t wait to see your creativity and insights in action. Stay SASE - Your Cato Networks TeamCato Connect Idea Hub FAQ
What should I include when posting an Idea? When sharing your Idea, be sure to include: Your use case The problem you’re trying to solve The benefit you hope to gain Any workarounds you’ve tried For example: "I’d love it if the logo could be pink. Our team is often confused because our company branding is pink, and we try to customize the rest of our software to match. I’d like the logo in the Cato Management Application to be pink. I’ve tried other customization options and even retrained our end users, but I still get questions." (Yes, I know this is a silly example—I just like pink.) What do the Idea statuses mean? Idea statuses in the Idea Hub reflect where an idea is in its journey. Here’s what you might see: Crowdsourcing Feedback– This idea is open for discussion! Vote and add your thoughts. The more nuanced the conversation, the more valuable it is to the team. Community Favorite – This idea is generating buzz. Look at all those votes and comments! Exploring Potential – Lots of discussion, but not as many votes. What do we think? Should this gain more traction? We’re Working On It – This idea has made it onto the roadmap. Delivered – The idea has been implemented—woohoo! Not Right Now – This idea doesn’t align with our current vision. Duplicate – This idea has already been brought up. *Note that your ideas may hang out with the same status for a long time – that’s ok! We keep an eye on all ideas, and we want to give them all a chance. How can I weigh in on other people’s Ideas? This space thrives on collaboration! You can: Vote – Click the vote button to show support. Comment – Add your use case, questions, insights, or workarounds. The richer the discussion, the better! Share – If you see a discussion that connects to an Idea, drop the link and invite others to join in. Will my Idea be implemented if it has a lot of votes? While we love seeing highly voted Ideas, implementation depends on many factors—vision, engineering effort, priorities, and, of course, community input. A lot of votes help an Idea get noticed, but they don’t guarantee delivery. That said, we are always discussing and assessing Ideas, so keep them coming! What happens if my Idea is closed? Even if an Idea is closed, it’s still part of the conversation. It may not be the right time for Cato to act on it, but it could spark future discussions, inspire new ideas, or even be revisited later. Don’t let a closed Idea stop you from sharing more! How is the Cato Networks team involved in the Idea process? Our team is actively monitoring and engaging with Ideas. Employees from various teams across Cato participate in the community, and we see everything that gets posted. The Community team collaborates closely with Product to maintain this space and facilitate internal discussions. You may even see a Cato employee jump into a thread to ask questions or share thoughts! How do I increase the visibility of my Idea? Want more votes? Here’s how to get more eyes on your Idea: Find related discussions in the community and drop a link to your Idea. Engage in the comments—every new comment boosts visibility! Encourage teammates who use the Cato software to log in and vote. Share with peers in your network who are Cato clients. I need more help/My Idea is urgent. If you need further assistance, please reach out to your Customer Success Manager. For general inquiries, you can also contact the Community team at community@catonetworks.com
X1700 Sockets running 22.0.19219 breaks HA
More of a caution, over the weekend we upgraded our sockets to 22.0.19219. No issues with our X1500's but sites running X1700's in an HA pair caused us some trouble. The HA keepalive no longer works, which was causing traffic to switch between Primary and Secondary sockets. Both sockets are showing as master. Engineering has discovered the root cause and are working on new version of the firmware, but wanted to let you all know in cause you plan to upgrade soon. Sockets can't reach each other via IP, but both sockets are pingable from other devices on the network.
Email alert when a domain is no longer accessible
We have a custom application configured with a set of FQDNs and a handful of destination IP's. Recently, one of the domains resolved to an IP that wasn't included in the application rule, preventing access to the domain. Is there a way to send an email alert when traffic to an allowed domain no longer makes it through? Something similar to Link Health Rule for destination IPs/Domains?
Auto disabling of "Secured Private Access" when user in office
In Cato, there is "Cato Connectivity Policy" wherein we can either allow "Allow Internet" or "Allow WAN and Internet" or "Block". We have MPLS in our offices and we wants to have only SWG i.e "Allow Internet" when user is in office so that internal applications go through MPLS and only internet traffic goes through Cato but when same user goes out of office than automatically both Internet and WAN traffic should go through the Cato. We had similar arrangement when we were with Netskope. In Netskope, there is a feature called “Enabling Dynamic Steering” [Refer https://docs.netskope.com/en/enabling-dynamic-steering/] wherein we could decide if users is “On-Premise” then what all traffic needs to be steered to Netskope and whether Private access needs to be enabled or not or only internet traffic is need to be steered. Can this be achieved in similar fashion ?NAT Settings
Hi all We have 2 regions that are using the same IP address. Our legacy network has NATed the IPs, so there is no IP duplication. We plan to migrate the legacy to CATO and tried to use NAT settings as in the kB, but it's not working. Region 1 (192.168.5.6/24) ⇒CATO ⇒ Azure Region 2(192.168.5.6./24)⇒NAT(10.x.x.x)⇒CATO⇒ Azure We configured NAT in the socket but PING or access to the Azure servers.
Always on VPN and troubleshooting connectivity issues
Hi, I wanted to check if anyone else have experienced issues with the users enabled for Always On when their SDP client can not connect. Ocasionaly we see clients can not connect showing different errors, like username not recognized, can not connect, etc. The problem is that our Zoho Assist remote management software is not available if the user laptop is not connected to Internet which it is not when using Always On. How do you guys provide support in this scenario? What we usually do is first disable Always on policy for that user and then re-install the CAto client using either local admin or service desk user account. The problem is that we need to change the passwords to those accounts after giving out to the user by phone. Basically we just need Zoho Assist client traffic to bypass Cato tunnel, we will be testing split tunnel feature and adding Zoho IPs to bypass. Curious to hear your thoughts. Thanks!
