nav[aria-label="Primary Navigation"] { padding: 0; & ul { list-style: none; width: 100%; display: flex; flex-direction: row; justify-content: start; align-items: start; gap: 30px; padding: 0; & li { margin: 0; } & ul li { list-style: none; } } }

Cato Cloud
- Discussions
- Best Practices
API
- Discussions
- Best Practices
Idea Hub
Community Help
- Discussions
Cato Partners
Cato SWIFTs
Discussions
Categories
Groups
Help

bypass application

KCA

can we Bypass the application in the Socket or still the IP level ?

Find more posts tagged with

Comments

andy

Bypass on Socket is only possible based on IP level at the moment. Maybe there will be once in the future a better solution. On SDP Client Split Tunneling, Cato also introduced a better solution last year. Maybe soon for Sockets.

PrakashRIndia

On SDP client , split tunneling is also based on IPs only and for specific 5 applications like zoom, teams etc but not on FQDN/domain or applications as of now.

CATOM

@KCA TLS Bypass can now be done not just by IP also by domain, category, IP, APP and more

Security > Firewall > TLS Inspection

KCA

@CATOM Thanks for the reply. let me try this and check on the traffic.

PrakashRIndia

But TLS bypass is limited to SSL inspection but not traffic bypass basis application or domain

CATOM

@KCA @PrakashRIndia That is correct, this is not for split tunneling but TLS Bypass. In case you have some sites that you do not want to do TLS inspection you have much more flexibility to use app/domain/ip and more.