A security engineer notices that traffic from a trusted internal application is being blocked by the firewall. The application communicates using a proprietary protocol over TCP port 8443. The engineer has already created a custom App-ID for this application but the traffic is still being blocked. What is the most likely reason?
Trap 1: The custom App-ID must be added to a security profile group.
Security profile groups are for threat prevention, not for App-ID assignment.
Trap 2: The custom App-ID needs a vulnerability profile to be activated.
Vulnerability profiles are separate and not required for App-ID activation.
Trap 3: The security policy rule uses the destination port instead of…
Security policies typically use App-ID, but the issue is that the custom App-ID is not being applied.
- A
The custom App-ID must be added to a security profile group.
Why wrong: Security profile groups are for threat prevention, not for App-ID assignment.
- B
The custom App-ID needs a vulnerability profile to be activated.
Why wrong: Vulnerability profiles are separate and not required for App-ID activation.
- C
The security policy rule uses the destination port instead of App-ID.
Why wrong: Security policies typically use App-ID, but the issue is that the custom App-ID is not being applied.
- D
An application override rule must be configured to associate the custom App-ID with the traffic.
Application override is necessary to bypass signature-based identification and assign the custom App-ID.