Full Layer 7 Application Awareness
Identifies applications traversing your network regardless of port, protocol, evasive techniques, or encryption. Uses the application, not the port, as the basis for all safe enablement policy decisions: allow, deny, schedule, inspect, and apply traffic-shaping. Supports creation of custom App-ID™ tags or requests for new App-IDs from Palo Alto Networks. Inspects payload data to block malicious files and stop data exfiltration attempts. Generates detailed application usage and SaaS traffic reports, both sanctioned and unsanctioned. Includes Policy Optimizer for transitioning legacy Layer 4 rules to App-ID-based rules.