Forum Discussion

KCA's avatar
KCA
Comet
3 months ago

bypass application

can we Bypass the application in the Socket or still the IP level ?

6 Replies

Sort By
  • KCA's avatar
    KCA
    Comet
    3 months ago

    CATOM  Thanks for the reply. let me try this and check on the traffic.

     

    • CATOM's avatar
      CATOM
      Icon for Cato Employee rankCato Employee
      3 months ago

      KCAPrakashRIndia  That is correct, this is not for split tunneling but TLS Bypass. In case you have some sites that you do not want to do TLS inspection you have much more flexibility to use app/domain/ip and more.

  • CATOM's avatar
    CATOM
    Icon for Cato Employee rankCato Employee
    3 months ago

    KCA  TLS Bypass can now be done not just by IP also by domain, category, IP, APP and more

    Security > Firewall > TLS Inspection

     

     

    • PrakashRIndia's avatar
      PrakashRIndia
      Meteor
      3 months ago

      But TLS bypass is limited to SSL inspection but not traffic bypass basis application or domain

  • andy's avatar
    andy
    Comet
    3 months ago

    Bypass on Socket is only possible based on IP level at the moment. Maybe there will be once in the future a better solution. On SDP Client Split Tunneling, Cato also introduced a better solution last year. Maybe soon for Sockets.

    • PrakashRIndia's avatar
      PrakashRIndia
      Meteor
      3 months ago

      On SDP client , split tunneling is also based on IPs only and for specific 5 applications like zoom, teams etc but not on FQDN/domain or applications as of now.