This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Custom Port / Application Classification

Hello,

I am trying to find a way to name custom ports for applications we use. For example, one piece of software we use talks to remote endpoints on TCP Port 6180. When viewing reports, unless that person happens to know what's on port 6180, they have no idea what they're looking at.

It would be nice to be able to define a custom Application or Port Classification which would read correctly on reports and make it much easier to quickly identify what the traffic is.

If this is already a feature then I'm missing it (nothing shocking there ) and a quick push in the right direction would be greatly appreciated.

Thanks!

Wayne.

This thread was automatically locked due to age.

Top Replies

Prism over 4 years ago +1

Hello, This is an old feature request, I will try to find It later on Sophos Ideas - and post it in here. * There's supposed to be two separate feature requests: Allow Custom Port Identification…

0 Prism over 4 years ago
Hello,

This is an old feature request, I will try to find It later on Sophos Ideas - and post it in here.

* There's supposed to be two separate feature requests:

Allow Custom Port Identification on the Reporting (I believe this got denied a while ago.)

Allow the creation of Custom Applications with Signatures (Also got answered, they told to use Synchronized Security with Intercept X.)

Thanks
Cancel
Vote Up +1 Vote Down

Cancel
0 rfcat_vk over 4 years ago in reply to Prism

The second option appears to have a minor bug in that the bad actor gets through to the end device instead of being stopped in the firewall?

You cannot configure intercept X on home devices so that is another failure. I also expect the same applies to small installations?

Ian
Cancel
Vote Up 0 Vote Down

Cancel