Legacy Application IDs
Legacy Application IDs are often applicable for East-West traffic. They usually represent applications that have been migrated from on-prem to public cloud in a lift-and-shift manor. Some examples as shown below:
|
Application Category |
Application IDs |
|---|---|
|
Interactive |
SSH, Telnet, RDP |
|
Databases |
MSSQL, MySQL, PostgreSQL |
|
File Server |
SMBv2, SMBv3 |
|
Authentication |
LDAP, LDAPS, Kerberos |
|
Data Transfer |
FTP Active, FTP Passive, TFTP |
|
Communication |
NETBIOS, RPC |
|
Voice |
SIP |
|
Transport |
HTTP, HTTPS |
|
Name Resolution |
DNS |
|
Security |
OCSP |
|
Software Update |
Microsoft Update, Office Mobile, Windows Live |
|
Network Management |
SNMPv1, SNMPv2c, SNMPv2u, SNMPv3 |
|
Encryption |
TLS1.2, TLS1.3 |