DescriptionThis article shows how to set up application control on v5.2. It gives an example showing how to block a specific application and allow all other applications.
SolutionIn this example, the GUI is used to block just Apple Store.
1) Click on Security Profiles > Application Control. In the extreme right corner, use the ‘+’ icon to create a new application control list, alternatively, use the existing default.
In this example, a new application control list with a name of ‘Block Apple Store’ is created.
2) Under Application Overrides, click on ‘Add Signatures’ and search for the application name which is to be blocked.
3) Select the required application and set the required action (in this case it is block, but this section can be used to override the action set on each category.
4) Click on Policy under Objects > Policy > IPV4. Select the source and destination interfaces along with the source and destination subnets as needed.
5) Enable UTM, and select the Application control list which was created earlier.
6) Select ‘SSL/SSH Inspection’ as default and choose deep-inspection if HTTPS traffic is to be inspected as well.