Application and DNS settings
This section enables users to custom define applications, group applications for use in policies, QoS Profiles, and also DNS settings.
You can define an Application Group for both predefined and custom applications. An Application Group contains applications that need similar treatment when defining a security policy.
You can reuse the Application Groups frequently when defining policies such as application steering or firewall rules. It eliminates the need to create multiple entries for each individual application. Similarly, while using any application services, Application Groups supports common applications with a unique name for simplified and consistent reuse.
To view Apps and DNS settings, navigate to Configuration > Application & DNS Settings.
The Custom Applications are used to create internal applications or IP-port combinations which are not available in the list of published applications. The administrator needs to define a custom application that can be used in multiple policies as needed, without referring the IP address and port number details each time.
The administrator can define a custom application based on IP protocol or Domain name.
To create custom application using IP protocol, click + Custom Applications and provide a name for the custom app. Specify the match criteria such as IP protocol, network IP address, port number, and, DSCP tag. The data flow matching this criteria is grouped as the custom application.
Once saved, the custom applications show up in a list and can be edited or deleted, as required.
You can also group several domain names as an application. To create custom applications based on domain name, select Domain Name Based. Enter the application name and the required domain names or patterns. You can either enter the full domain name or use wild cards at the beginning. For example - *.google.com
An Application Group helps administrators group similar applications together for use in common policies, without necessarily having to create a policy for each individual application.
You can create an Application Group by using the Add Application Groups option. You can refer the same Application Group while creating a policy as per the application role. The policy that is defined for the particular group is applied to each application that matches to the specific category.
For example, you can create an Application Group as Social Networking and add social networks such as Facebook, LinkedIn, and Twitter to the group to define certain policies for social networking applications.
To create an Application Group, specify a group name, search, and add apps from the Applications list. You can always go back and edit your settings or delete Application Group as needed.
You can configure specific DNS servers to which the DNS requests are routed.
Enter a name for the DNS server and specify the Primary and Secondary DNS server IP addresses. You can create internal, ISP, google or any other open source DNS service.