Recent Discussions
Defender for Identity - VPN Integration
Hi, We frequently get false positives from Microsoft Defender for Identity because it's unable to map the IP address Cato assigns a remote user with their laptop hostname. I guess our on prem Microsoft sensors are unaware of the Cato client range. I think the only way to fix it is to send RADIUS accounting events from Cato to the Microsoft sensor, but I don't think this can be done? https://learn.microsoft.com/en-us/defender-for-identity/vpn-integrationDavidG12 hours agoMeteor1View0likes0CommentsAWS can't reach Private IP - Cato Client Windows
Hi, on my PC I have the Cato Client to connect to Cato Network. We have a connection with a virtual appliance in AWS in one account. In this account there is a TGW that connect other accounts. I can' reach the private IP of AWS accounts, but all networks are routed in Cato Configuration, TGW and VPC route tables seems ok....The source/destination check is disabled for LAN interface, the client subnet 10.41.0.0/16 is associated to subnet route table, tgw route table and there is also in the other account's route tables..... But the traffic is not going well..... any suggestion ? Many thanks DarioDario11 days agoComet10Views0likes1CommentWireless Traffic Identified as DSCP18
This is driving me up the wall and I don't see a lot of good options, aside from pester support. We're an Aruba wireless shop and we have some WMM/QoS configured. This ends up with a bunch of events where the Application/Service detected is dscp18 because Cato is picking up on the QoS value from the access point. It makes my life difficult when we try to create WAN Firewall rules based on a service on a given destination(s). Aside from de-allocating that DSCP value on my production SSID's, what can I do? Has anyone else encountered this before?MichaelQ31 days agoMeteor71Views0likes4CommentsAzure Virtual Desktop Session Host Routing
Hi, has anyone ever set up a route table on Azure so that the route to Microsoft Login subnets goes out through Cato? When we tried doing this, to make sure our AVD users are protected by Cato, users stopped being able to connect to session hosts through the AVD FQDN (broker). I suspect that its either TLS Inspection being enabled for Microsoft Login app (has never been an issue for our laptop users), or that AVD brokering system needs Microsoft Login traffic to go through the internet instead of a private route for some reason.65Views0likes2CommentsNetwork routing
Need some confirmation with the routing configuration. Under the Network routing, I can only see the UI says Subnet but I am pretty sure we should be able to route a host say 1.1.1.1/32 as well. The UI does not allow you to put 1.1.1.1/32. Can I just put 1.1.1.1 without the mask and be OKAY?SolvedAbn2 months agoMeteor61Views0likes2CommentsRegarding the Q&A from today's CASB live session
I'm not sure if this is the right place to ask, but is there a way to review the Q&A from the CASB live session that just took place? I’d like to go over what questions were asked and what responses were given.KojiroZaitsu2 months agoMeteor23Views1like1CommentConnectivity Alert Email - Interface Names
Hello, By default, the notification emails regarding a disconnected or degraded socket interface include the public IP address of the interface under "Interface Name". This does not match the port name in the socket configuration panel. Is it possible to modify this email template to include the descriptive name instead of, or ideally in addition to, the public IP address? This would be extremely helpful for quickly identifying which ISP is impacted. Not all network engineers have every single public IP in the company committed to memory! (Pictures have been redacted/edited to remove or alter sensitive information)aekcmi3 months agoMeteor146Views2likes10CommentsCATO Client still connected in a trusted network
Hello! Is it normal that my CATO client stay connected event if i'm in a trusted network? The Alway on status is Enforced (Suspend) I can disconnect my client, but i was wondering if it's not disconnecting itself. Thanks a lot!Steph3 months agoComet63Views0likes1CommentDirected Broadcast?
Short & sweet: can CATO do Directed Broadcast? Yes, it's for WoL between sites.SolvedBrad4 months agoComet52Views0likes1Comment