Corporate Network Configuration for CENTRL

Network Configuration for Application Usage

All CENTRL users are advised to whitelist CENTRL's applications and URLs since some company firewalls, Data Loss Prevention (DLP), and/or Endpoint Protection (EP) might block its usage. Application whitelisting provides indexing of approved software applications that are permitted to be present and active on a computer system.

Palo Alto Networks
WebSense
CENTRL and Third-party URLs

Palo Alto Networks

It is highly recommended that a decryption exception is specified for usage of the CENTRL application.

Reference: https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/decryption/configure-decryption-exceptions

Clients have reported issues due to the limitation of Palo Alto Networks “SSL decrypt exclude cache and unsupported ECDHE cipher suites” which requires an SSL bypass.

Reference: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClfGCAS

Depending on the software version and updated version of the categorization engine, the categorization of the URLs is determined. It is recommended that the URLs be manually categorized which provides correct access.

WebSense

It is highly recommended that a decryption exception is specified for usage of the CENTRL application.

Reference: https://www.websense.com/content/support/library/web/hosted/admin_guide/ssl_bypass.aspx

Depending on the software version and updated version of the categorization engine determines the categorization of the URLs. It is recommended that the URLs be manually categorized which provides correct access.