{"id":1212,"date":"2021-08-18T15:58:40","date_gmt":"2021-08-18T20:58:40","guid":{"rendered":"https:\/\/zewwy.ca\/?p=1212"},"modified":"2021-08-18T15:58:40","modified_gmt":"2021-08-18T20:58:40","slug":"palo-alto-networks-protocols-defined","status":"publish","type":"post","link":"https:\/\/zewwy.ca\/index.php\/2021\/08\/18\/palo-alto-networks-protocols-defined\/","title":{"rendered":"Palo Alto Networks Protocols Defined"},"content":{"rendered":"

I have to often do validation on rules set created on a Palo Alto firewall<\/a>, now if you’ve done this you’ll know there’s\u00a0 a specific requirement to define which protocol to test against. Generally you’ll use UDP or TCP, and ICMP if needing to validate ping rules.<\/p>\n

However PAN uses numbers and the provided direct KB from them does not define them all (1-255). So googling I found a nice simplified post by Kerry Cordero on his site here<\/a>. Where he got this info from I’m not certain, he did not reference any PAN KB’s or anything. For prosperity of the internet I have quotes his list as it was on his site.<\/p>\n

Many Thanks to Kerry for this work on this.<\/p>\n

Protocol Options:<\/strong>
\nWhen it comes to the protocol #, you have several options to choose from like:<\/p>\n

TCP = 6
\nUDP = 17
\nICMP = 1
\nESP = 50<\/p>\n

Below is a full list of options you can use.<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
Decimal<\/td>\nKeyword<\/td>\nProtocol<\/td>\nIPv6 Extension Header<\/td>\nReference<\/td>\n<\/tr>\n
0<\/td>\nHOPOPT<\/td>\nIPv6 Hop-by-Hop Option<\/td>\nY<\/td>\n[RFC8200]<\/td>\n<\/tr>\n
1<\/td>\nICMP<\/td>\nInternet Control Message<\/td>\n<\/td>\n[RFC792]<\/td>\n<\/tr>\n
2<\/td>\nIGMP<\/td>\nInternet Group Management<\/td>\n<\/td>\n[RFC1112]<\/td>\n<\/tr>\n
3<\/td>\nGGP<\/td>\nGateway-to-Gateway<\/td>\n<\/td>\n[RFC823]<\/td>\n<\/tr>\n
4<\/td>\nIPv4<\/td>\nIPv4 encapsulation<\/td>\n<\/td>\n[RFC2003]<\/td>\n<\/tr>\n
5<\/td>\nST<\/td>\nStream<\/td>\n<\/td>\n[RFC1190][RFC1819]<\/td>\n<\/tr>\n
6<\/td>\nTCP<\/td>\nTransmission Control<\/td>\n<\/td>\n[RFC793]<\/td>\n<\/tr>\n
7<\/td>\nCBT<\/td>\nCBT<\/td>\n<\/td>\n[Tony_Ballardie]<\/td>\n<\/tr>\n
8<\/td>\nEGP<\/td>\nExterior Gateway Protocol<\/td>\n<\/td>\n[RFC888][David_Mills]<\/td>\n<\/tr>\n
9<\/td>\nIGP<\/td>\nany private interior gateway
\n(used by Cisco for their IGRP)<\/td>\n		<\/td>\n[Internet_Assigned_Numbers_Authority]<\/td>\n<\/tr>\n
10<\/td>\nBBN-RCC-MON<\/td>\nBBN RCC Monitoring<\/td>\n<\/td>\n[Steve_Chipman]<\/td>\n<\/tr>\n
11<\/td>\nNVP-II<\/td>\nNetwork Voice Protocol<\/td>\n<\/td>\n[RFC741][Steve_Casner]<\/td>\n<\/tr>\n
12<\/td>\nPUP<\/td>\nPUP<\/td>\n<\/td>\n[Boggs, D., J. Shoch, E. Taft, and R. Metcalfe, \u201cPUP: An
\nInternetwork Architecture\u201d, XEROX Palo Alto Research Center,
\nCSL-79-10, July 1979; also in IEEE Transactions on
\nCommunication, Volume COM-28, Number 4, April 1980.][[XEROX]]<\/td>\n<\/tr>\n
13<\/td>\nARGUS (deprecated)<\/td>\nARGUS<\/td>\n<\/td>\n[Robert_W_Scheifler]<\/td>\n<\/tr>\n
14<\/td>\nEMCON<\/td>\nEMCON<\/td>\n<\/td>\n[<mystery contact>]<\/td>\n<\/tr>\n
15<\/td>\nXNET<\/td>\nCross Net Debugger<\/td>\n<\/td>\n[Haverty, J., \u201cXNET Formats for Internet Protocol Version 4\u201d,
\nIEN 158, October 1980.][Jack_Haverty]<\/td>\n<\/tr>\n
16<\/td>\nCHAOS<\/td>\nChaos<\/td>\n<\/td>\n[J_Noel_Chiappa]<\/td>\n<\/tr>\n
17<\/td>\nUDP<\/td>\nUser Datagram<\/td>\n<\/td>\n[RFC768][Jon_Postel]<\/td>\n<\/tr>\n
18<\/td>\nMUX<\/td>\nMultiplexing<\/td>\n<\/td>\n[Cohen, D. and J. Postel, \u201cMultiplexing Protocol\u201d, IEN 90,
\nUSC\/Information Sciences Institute, May 1979.][Jon_Postel]<\/td>\n<\/tr>\n
19<\/td>\nDCN-MEAS<\/td>\nDCN Measurement Subsystems<\/td>\n<\/td>\n[David_Mills]<\/td>\n<\/tr>\n
20<\/td>\nHMP<\/td>\nHost Monitoring<\/td>\n<\/td>\n[RFC869][Bob_Hinden]<\/td>\n<\/tr>\n
21<\/td>\nPRM<\/td>\nPacket Radio Measurement<\/td>\n<\/td>\n[Zaw_Sing_Su]<\/td>\n<\/tr>\n
22<\/td>\nXNS-IDP<\/td>\nXEROX NS IDP<\/td>\n<\/td>\n[\u201cThe Ethernet, A Local Area Network: Data Link Layer and
\nPhysical Layer Specification\u201d, AA-K759B-TK, Digital
\nEquipment Corporation, Maynard, MA.\u00a0 Also as: \u201cThe
\nEthernet \u2013 A Local Area Network\u201d, Version 1.0, Digital
\nEquipment Corporation, Intel Corporation, Xerox
\nCorporation, September 1980.\u00a0 And: \u201cThe Ethernet, A Local
\nArea Network: Data Link Layer and Physical Layer
\nSpecifications\u201d, Digital, Intel and Xerox, November 1982.
\nAnd: XEROX, \u201cThe Ethernet, A Local Area Network: Data Link
\nLayer and Physical Layer Specification\u201d, X3T51\/80-50,
\nXerox Corporation, Stamford, CT., October 1980.][[XEROX]]<\/td>\n<\/tr>\n
23<\/td>\nTRUNK-1<\/td>\nTrunk-1<\/td>\n<\/td>\n[Barry_Boehm]<\/td>\n<\/tr>\n
24<\/td>\nTRUNK-2<\/td>\nTrunk-2<\/td>\n<\/td>\n[Barry_Boehm]<\/td>\n<\/tr>\n
25<\/td>\nLEAF-1<\/td>\nLeaf-1<\/td>\n<\/td>\n[Barry_Boehm]<\/td>\n<\/tr>\n
26<\/td>\nLEAF-2<\/td>\nLeaf-2<\/td>\n<\/td>\n[Barry_Boehm]<\/td>\n<\/tr>\n
27<\/td>\nRDP<\/td>\nReliable Data Protocol<\/td>\n<\/td>\n[RFC908][Bob_Hinden]<\/td>\n<\/tr>\n
28<\/td>\nIRTP<\/td>\nInternet Reliable Transaction<\/td>\n<\/td>\n[RFC938][Trudy_Miller]<\/td>\n<\/tr>\n
29<\/td>\nISO-TP4<\/td>\nISO Transport Protocol Class 4<\/td>\n<\/td>\n[RFC905][<mystery contact>]<\/td>\n<\/tr>\n
30<\/td>\nNETBLT<\/td>\nBulk Data Transfer Protocol<\/td>\n<\/td>\n[RFC969][David_Clark]<\/td>\n<\/tr>\n
31<\/td>\nMFE-NSP<\/td>\nMFE Network Services Protocol<\/td>\n<\/td>\n[Shuttleworth, B., \u201cA Documentary of MFENet, a National
\nComputer Network\u201d, UCRL-52317, Lawrence Livermore Labs,
\nLivermore, California, June 1977.][Barry_Howard]<\/td>\n<\/tr>\n
32<\/td>\nMERIT-INP<\/td>\nMERIT Internodal Protocol<\/td>\n<\/td>\n[Hans_Werner_Braun]<\/td>\n<\/tr>\n
33<\/td>\nDCCP<\/td>\nDatagram Congestion Control Protocol<\/td>\n<\/td>\n[RFC4340]<\/td>\n<\/tr>\n
34<\/td>\n3PC<\/td>\nThird Party Connect Protocol<\/td>\n<\/td>\n[Stuart_A_Friedberg]<\/td>\n<\/tr>\n
35<\/td>\nIDPR<\/td>\nInter-Domain Policy Routing Protocol<\/td>\n<\/td>\n[Martha_Steenstrup]<\/td>\n<\/tr>\n
36<\/td>\nXTP<\/td>\nXTP<\/td>\n<\/td>\n[Greg_Chesson]<\/td>\n<\/tr>\n
37<\/td>\nDDP<\/td>\nDatagram Delivery Protocol<\/td>\n<\/td>\n[Wesley_Craig]<\/td>\n<\/tr>\n
38<\/td>\nIDPR-CMTP<\/td>\nIDPR Control Message Transport Proto<\/td>\n<\/td>\n[Martha_Steenstrup]<\/td>\n<\/tr>\n
39<\/td>\nTP++<\/td>\nTP++ Transport Protocol<\/td>\n<\/td>\n[Dirk_Fromhein]<\/td>\n<\/tr>\n
40<\/td>\nIL<\/td>\nIL Transport Protocol<\/td>\n<\/td>\n[Dave_Presotto]<\/td>\n<\/tr>\n
41<\/td>\nIPv6<\/td>\nIPv6 encapsulation<\/td>\n<\/td>\n[RFC2473]<\/td>\n<\/tr>\n
42<\/td>\nSDRP<\/td>\nSource Demand Routing Protocol<\/td>\n<\/td>\n[Deborah_Estrin]<\/td>\n<\/tr>\n
43<\/td>\nIPv6-Route<\/td>\nRouting Header for IPv6<\/td>\nY<\/td>\n[Steve_Deering]<\/td>\n<\/tr>\n
44<\/td>\nIPv6-Frag<\/td>\nFragment Header for IPv6<\/td>\nY<\/td>\n[Steve_Deering]<\/td>\n<\/tr>\n
45<\/td>\nIDRP<\/td>\nInter-Domain Routing Protocol<\/td>\n<\/td>\n[Sue_Hares]<\/td>\n<\/tr>\n
46<\/td>\nRSVP<\/td>\nReservation Protocol<\/td>\n<\/td>\n[RFC2205][RFC3209][Bob_Braden]<\/td>\n<\/tr>\n
47<\/td>\nGRE<\/td>\nGeneric Routing Encapsulation<\/td>\n<\/td>\n[RFC2784][Tony_Li]<\/td>\n<\/tr>\n
48<\/td>\nDSR<\/td>\nDynamic Source Routing Protocol<\/td>\n<\/td>\n[RFC4728]<\/td>\n<\/tr>\n
49<\/td>\nBNA<\/td>\nBNA<\/td>\n<\/td>\n[Gary Salamon]<\/td>\n<\/tr>\n
50<\/td>\nESP<\/td>\nEncap Security Payload<\/td>\nY<\/td>\n[RFC4303]<\/td>\n<\/tr>\n
51<\/td>\nAH<\/td>\nAuthentication Header<\/td>\nY<\/td>\n[RFC4302]<\/td>\n<\/tr>\n
52<\/td>\nI-NLSP<\/td>\nIntegrated Net Layer Security\u00a0 TUBA<\/td>\n<\/td>\n[K_Robert_Glenn]<\/td>\n<\/tr>\n
53<\/td>\nSWIPE (deprecated)<\/td>\nIP with Encryption<\/td>\n<\/td>\n[John_Ioannidis]<\/td>\n<\/tr>\n
54<\/td>\nNARP<\/td>\nNBMA Address Resolution Protocol<\/td>\n<\/td>\n[RFC1735]<\/td>\n<\/tr>\n
55<\/td>\nMOBILE<\/td>\nIP Mobility<\/td>\n<\/td>\n[Charlie_Perkins]<\/td>\n<\/tr>\n
56<\/td>\nTLSP<\/td>\nTransport Layer Security Protocol
\nusing Kryptonet key management<\/td>\n		<\/td>\n[Christer_Oberg]<\/td>\n<\/tr>\n
57<\/td>\nSKIP<\/td>\nSKIP<\/td>\n<\/td>\n[Tom_Markson]<\/td>\n<\/tr>\n
58<\/td>\nIPv6-ICMP<\/td>\nICMP for IPv6<\/td>\n<\/td>\n[RFC8200]<\/td>\n<\/tr>\n
59<\/td>\nIPv6-NoNxt<\/td>\nNo Next Header for IPv6<\/td>\n<\/td>\n[RFC8200]<\/td>\n<\/tr>\n
60<\/td>\nIPv6-Opts<\/td>\nDestination Options for IPv6<\/td>\nY<\/td>\n[RFC8200]<\/td>\n<\/tr>\n
61<\/td>\n<\/td>\nany host internal protocol<\/td>\n<\/td>\n[Internet_Assigned_Numbers_Authority]<\/td>\n<\/tr>\n
62<\/td>\nCFTP<\/td>\nCFTP<\/td>\n<\/td>\n[Forsdick, H., \u201cCFTP\u201d, Network Message, Bolt Beranek and
\nNewman, January 1982.][Harry_Forsdick]<\/td>\n<\/tr>\n
63<\/td>\n<\/td>\nany local network<\/td>\n<\/td>\n[Internet_Assigned_Numbers_Authority]<\/td>\n<\/tr>\n
64<\/td>\nSAT-EXPAK<\/td>\nSATNET and Backroom EXPAK<\/td>\n<\/td>\n[Steven_Blumenthal]<\/td>\n<\/tr>\n
65<\/td>\nKRYPTOLAN<\/td>\nKryptolan<\/td>\n<\/td>\n[Paul Liu]<\/td>\n<\/tr>\n
66<\/td>\nRVD<\/td>\nMIT Remote Virtual Disk Protocol<\/td>\n<\/td>\n[Michael_Greenwald]<\/td>\n<\/tr>\n
67<\/td>\nIPPC<\/td>\nInternet Pluribus Packet Core<\/td>\n<\/td>\n[Steven_Blumenthal]<\/td>\n<\/tr>\n
68<\/td>\n<\/td>\nany distributed file system<\/td>\n<\/td>\n[Internet_Assigned_Numbers_Authority]<\/td>\n<\/tr>\n
69<\/td>\nSAT-MON<\/td>\nSATNET Monitoring<\/td>\n<\/td>\n[Steven_Blumenthal]<\/td>\n<\/tr>\n
70<\/td>\nVISA<\/td>\nVISA Protocol<\/td>\n<\/td>\n[Gene_Tsudik]<\/td>\n<\/tr>\n
71<\/td>\nIPCV<\/td>\nInternet Packet Core Utility<\/td>\n<\/td>\n[Steven_Blumenthal]<\/td>\n<\/tr>\n
72<\/td>\nCPNX<\/td>\nComputer Protocol Network Executive<\/td>\n<\/td>\n[David Mittnacht]<\/td>\n<\/tr>\n
73<\/td>\nCPHB<\/td>\nComputer Protocol Heart Beat<\/td>\n<\/td>\n[David Mittnacht]<\/td>\n<\/tr>\n
74<\/td>\nWSN<\/td>\nWang Span Network<\/td>\n<\/td>\n[Victor Dafoulas]<\/td>\n<\/tr>\n
75<\/td>\nPVP<\/td>\nPacket Video Protocol<\/td>\n<\/td>\n[Steve_Casner]<\/td>\n<\/tr>\n
76<\/td>\nBR-SAT-MON<\/td>\nBackroom SATNET Monitoring<\/td>\n<\/td>\n[Steven_Blumenthal]<\/td>\n<\/tr>\n
77<\/td>\nSUN-ND<\/td>\nSUN ND PROTOCOL-Temporary<\/td>\n<\/td>\n[William_Melohn]<\/td>\n<\/tr>\n
78<\/td>\nWB-MON<\/td>\nWIDEBAND Monitoring<\/td>\n<\/td>\n[Steven_Blumenthal]<\/td>\n<\/tr>\n
79<\/td>\nWB-EXPAK<\/td>\nWIDEBAND EXPAK<\/td>\n<\/td>\n[Steven_Blumenthal]<\/td>\n<\/tr>\n
80<\/td>\nISO-IP<\/td>\nISO Internet Protocol<\/td>\n<\/td>\n[Marshall_T_Rose]<\/td>\n<\/tr>\n
81<\/td>\nVMTP<\/td>\nVMTP<\/td>\n<\/td>\n[Dave_Cheriton]<\/td>\n<\/tr>\n
82<\/td>\nSECURE-VMTP<\/td>\nSECURE-VMTP<\/td>\n<\/td>\n[Dave_Cheriton]<\/td>\n<\/tr>\n
83<\/td>\nVINES<\/td>\nVINES<\/td>\n<\/td>\n[Brian Horn]<\/td>\n<\/tr>\n
84<\/td>\nTTP<\/td>\nTransaction Transport Protocol<\/td>\n<\/td>\n[Jim_Stevens]<\/td>\n<\/tr>\n
84<\/td>\nIPTM<\/td>\nInternet Protocol Traffic Manager<\/td>\n<\/td>\n[Jim_Stevens]<\/td>\n<\/tr>\n
85<\/td>\nNSFNET-IGP<\/td>\nNSFNET-IGP<\/td>\n<\/td>\n[Hans_Werner_Braun]<\/td>\n<\/tr>\n
86<\/td>\nDGP<\/td>\nDissimilar Gateway Protocol<\/td>\n<\/td>\n[M\/A-COM Government Systems, \u201cDissimilar Gateway Protocol
\nSpecification, Draft Version\u201d, Contract no. CS901145,
\nNovember 16, 1987.][Mike_Little]<\/td>\n<\/tr>\n
87<\/td>\nTCF<\/td>\nTCF<\/td>\n<\/td>\n[Guillermo_A_Loyola]<\/td>\n<\/tr>\n
88<\/td>\nEIGRP<\/td>\nEIGRP<\/td>\n<\/td>\n[RFC7868]<\/td>\n<\/tr>\n
89<\/td>\nOSPFIGP<\/td>\nOSPFIGP<\/td>\n<\/td>\n[RFC1583][RFC2328][RFC5340][John_Moy]<\/td>\n<\/tr>\n
90<\/td>\nSprite-RPC<\/td>\nSprite RPC Protocol<\/td>\n<\/td>\n[Welch, B., \u201cThe Sprite Remote Procedure Call System\u201d,
\nTechnical Report, UCB\/Computer Science Dept., 86\/302,
\nUniversity of California at Berkeley, June 1986.][Bruce Willins]<\/td>\n<\/tr>\n
91<\/td>\nLARP<\/td>\nLocus Address Resolution Protocol<\/td>\n<\/td>\n[Brian Horn]<\/td>\n<\/tr>\n
92<\/td>\nMTP<\/td>\nMulticast Transport Protocol<\/td>\n<\/td>\n[Susie_Armstrong]<\/td>\n<\/tr>\n
93<\/td>\nAX.25<\/td>\nAX.25 Frames<\/td>\n<\/td>\n[Brian_Kantor]<\/td>\n<\/tr>\n
94<\/td>\nIPIP<\/td>\nIP-within-IP Encapsulation Protocol<\/td>\n<\/td>\n[John_Ioannidis]<\/td>\n<\/tr>\n
95<\/td>\nMICP (deprecated)<\/td>\nMobile Internetworking Control Pro.<\/td>\n<\/td>\n[John_Ioannidis]<\/td>\n<\/tr>\n
96<\/td>\nSCC-SP<\/td>\nSemaphore Communications Sec. Pro.<\/td>\n<\/td>\n[Howard_Hart]<\/td>\n<\/tr>\n
97<\/td>\nETHERIP<\/td>\nEthernet-within-IP Encapsulation<\/td>\n<\/td>\n[RFC3378]<\/td>\n<\/tr>\n
98<\/td>\nENCAP<\/td>\nEncapsulation Header<\/td>\n<\/td>\n[RFC1241][Robert_Woodburn]<\/td>\n<\/tr>\n
99<\/td>\n<\/td>\nany private encryption scheme<\/td>\n<\/td>\n[Internet_Assigned_Numbers_Authority]<\/td>\n<\/tr>\n
100<\/td>\nGMTP<\/td>\nGMTP<\/td>\n<\/td>\n[[RXB5]]<\/td>\n<\/tr>\n
101<\/td>\nIFMP<\/td>\nIpsilon Flow Management Protocol<\/td>\n<\/td>\n[Bob_Hinden][November 1995, 1997.]<\/td>\n<\/tr>\n
102<\/td>\nPNNI<\/td>\nPNNI over IP<\/td>\n<\/td>\n[Ross_Callon]<\/td>\n<\/tr>\n
103<\/td>\nPIM<\/td>\nProtocol Independent Multicast<\/td>\n<\/td>\n[RFC7761][Dino_Farinacci]<\/td>\n<\/tr>\n
104<\/td>\nARIS<\/td>\nARIS<\/td>\n<\/td>\n[Nancy_Feldman]<\/td>\n<\/tr>\n
105<\/td>\nSCPS<\/td>\nSCPS<\/td>\n<\/td>\n[Robert_Durst]<\/td>\n<\/tr>\n
106<\/td>\nQNX<\/td>\nQNX<\/td>\n<\/td>\n[Michael_Hunter]<\/td>\n<\/tr>\n
107<\/td>\nA\/N<\/td>\nActive Networks<\/td>\n<\/td>\n[Bob_Braden]<\/td>\n<\/tr>\n
108<\/td>\nIPComp<\/td>\nIP Payload Compression Protocol<\/td>\n<\/td>\n[RFC2393]<\/td>\n<\/tr>\n
109<\/td>\nSNP<\/td>\nSitara Networks Protocol<\/td>\n<\/td>\n[Manickam_R_Sridhar]<\/td>\n<\/tr>\n
110<\/td>\nCompaq-Peer<\/td>\nCompaq Peer Protocol<\/td>\n<\/td>\n[Victor_Volpe]<\/td>\n<\/tr>\n
111<\/td>\nIPX-in-IP<\/td>\nIPX in IP<\/td>\n<\/td>\n[CJ_Lee]<\/td>\n<\/tr>\n
112<\/td>\nVRRP<\/td>\nVirtual Router Redundancy Protocol<\/td>\n<\/td>\n[RFC5798]<\/td>\n<\/tr>\n
113<\/td>\nPGM<\/td>\nPGM Reliable Transport Protocol<\/td>\n<\/td>\n[Tony_Speakman]<\/td>\n<\/tr>\n
114<\/td>\n<\/td>\nany 0-hop protocol<\/td>\n<\/td>\n[Internet_Assigned_Numbers_Authority]<\/td>\n<\/tr>\n
115<\/td>\nL2TP<\/td>\nLayer Two Tunneling Protocol<\/td>\n<\/td>\n[RFC3931][Bernard_Aboba]<\/td>\n<\/tr>\n
116<\/td>\nDDX<\/td>\nD-II Data Exchange (DDX)<\/td>\n<\/td>\n[John_Worley]<\/td>\n<\/tr>\n
117<\/td>\nIATP<\/td>\nInteractive Agent Transfer Protocol<\/td>\n<\/td>\n[John_Murphy]<\/td>\n<\/tr>\n
118<\/td>\nSTP<\/td>\nSchedule Transfer Protocol<\/td>\n<\/td>\n[Jean_Michel_Pittet]<\/td>\n<\/tr>\n
119<\/td>\nSRP<\/td>\nSpectraLink Radio Protocol<\/td>\n<\/td>\n[Mark_Hamilton]<\/td>\n<\/tr>\n
120<\/td>\nUTI<\/td>\nUTI<\/td>\n<\/td>\n[Peter_Lothberg]<\/td>\n<\/tr>\n
121<\/td>\nSMP<\/td>\nSimple Message Protocol<\/td>\n<\/td>\n[Leif_Ekblad]<\/td>\n<\/tr>\n
122<\/td>\nSM (deprecated)<\/td>\nSimple Multicast Protocol<\/td>\n<\/td>\n[Jon_Crowcroft][draft-perlman-simple-multicast]<\/td>\n<\/tr>\n
123<\/td>\nPTP<\/td>\nPerformance Transparency Protocol<\/td>\n<\/td>\n[Michael_Welzl]<\/td>\n<\/tr>\n
124<\/td>\nISIS over IPv4<\/td>\n<\/td>\n<\/td>\n[Tony_Przygienda]<\/td>\n<\/tr>\n
125<\/td>\nFIRE<\/td>\n<\/td>\n<\/td>\n[Criag_Partridge]<\/td>\n<\/tr>\n
126<\/td>\nCRTP<\/td>\nCombat Radio Transport Protocol<\/td>\n<\/td>\n[Robert_Sautter]<\/td>\n<\/tr>\n
127<\/td>\nCRUDP<\/td>\nCombat Radio User Datagram<\/td>\n<\/td>\n[Robert_Sautter]<\/td>\n<\/tr>\n
128<\/td>\nSSCOPMCE<\/td>\n<\/td>\n<\/td>\n[Kurt_Waber]<\/td>\n<\/tr>\n
129<\/td>\nIPLT<\/td>\n<\/td>\n<\/td>\n[[Hollbach]]<\/td>\n<\/tr>\n
130<\/td>\nSPS<\/td>\nSecure Packet Shield<\/td>\n<\/td>\n[Bill_McIntosh]<\/td>\n<\/tr>\n
131<\/td>\nPIPE<\/td>\nPrivate IP Encapsulation within IP<\/td>\n<\/td>\n[Bernhard_Petri]<\/td>\n<\/tr>\n
132<\/td>\nSCTP<\/td>\nStream Control Transmission Protocol<\/td>\n<\/td>\n[Randall_R_Stewart]<\/td>\n<\/tr>\n
133<\/td>\nFC<\/td>\nFibre Channel<\/td>\n<\/td>\n[Murali_Rajagopal][RFC6172]<\/td>\n<\/tr>\n
134<\/td>\nRSVP-E2E-IGNORE<\/td>\n<\/td>\n<\/td>\n[RFC3175]<\/td>\n<\/tr>\n
135<\/td>\nMobility Header<\/td>\n<\/td>\nY<\/td>\n[RFC6275]<\/td>\n<\/tr>\n
136<\/td>\nUDPLite<\/td>\n<\/td>\n<\/td>\n[RFC3828]<\/td>\n<\/tr>\n
137<\/td>\nMPLS-in-IP<\/td>\n<\/td>\n<\/td>\n[RFC4023]<\/td>\n<\/tr>\n
138<\/td>\nmanet<\/td>\nMANET Protocols<\/td>\n<\/td>\n[RFC5498]<\/td>\n<\/tr>\n
139<\/td>\nHIP<\/td>\nHost Identity Protocol<\/td>\nY<\/td>\n[RFC7401]<\/td>\n<\/tr>\n
140<\/td>\nShim6<\/td>\nShim6 Protocol<\/td>\nY<\/td>\n[RFC5533]<\/td>\n<\/tr>\n
141<\/td>\nWESP<\/td>\nWrapped Encapsulating Security Payload<\/td>\n<\/td>\n[RFC5840]<\/td>\n<\/tr>\n
142<\/td>\nROHC<\/td>\nRobust Header Compression<\/td>\n<\/td>\n[RFC5858]<\/td>\n<\/tr>\n
143<\/td>\nEthernet<\/td>\nEthernet<\/td>\n<\/td>\n[RFC8986]<\/td>\n<\/tr>\n
144-252<\/td>\n<\/td>\nUnassigned<\/td>\n<\/td>\n[Internet_Assigned_Numbers_Authority]<\/td>\n<\/tr>\n
253<\/td>\n<\/td>\nUse for experimentation and testing<\/td>\nY<\/td>\n[RFC3692]<\/td>\n<\/tr>\n
254<\/td>\n<\/td>\nUse for experimentation and testing<\/td>\nY<\/td>\n[RFC3692]<\/td>\n<\/tr>\n
255<\/td>\nReserved<\/td>\n<\/td>\n<\/td>\n[Internet_Assigned_Numbers_Authority]<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

“<\/p>\n","protected":false},"excerpt":{"rendered":"

I have to often do validation on rules set created on a Palo Alto firewall, now if you’ve done this you’ll know there’s\u00a0 a specific requirement to define which protocol to test against. Generally you’ll use UDP or TCP, and ICMP if needing to validate ping rules. However PAN uses numbers and the provided direct … <\/p>\n

Continue reading “Palo Alto Networks Protocols Defined”<\/span><\/a><\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"sfsi_plus_gutenberg_text_before_share":"","sfsi_plus_gutenberg_show_text_before_share":"","sfsi_plus_gutenberg_icon_type":"","sfsi_plus_gutenberg_icon_alignemt":"","sfsi_plus_gutenburg_max_per_row":"","footnotes":""},"categories":[127],"tags":[161,366],"class_list":["post-1212","post","type-post","status-publish","format-standard","hentry","category-palo-alto-networks","tag-pan","tag-protocol"],"_links":{"self":[{"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/posts\/1212","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/comments?post=1212"}],"version-history":[{"count":1,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/posts\/1212\/revisions"}],"predecessor-version":[{"id":1213,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/posts\/1212\/revisions\/1213"}],"wp:attachment":[{"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/media?parent=1212"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/categories?post=1212"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zewwy.ca\/index.php\/wp-json\/wp\/v2\/tags?post=1212"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}