Document toolboxDocument toolbox

Creating Application Filters

Owned by Gary Leicht
Last updated: Oct 02, 2024 by Shirly Tsang
4 min read

 

NOTE: If you are creating an application filter to be used with local on-prem resolution, then you must add Allow - Local Resolution as the default action to your security policy. Application filters are available to subscribers of Infoblox Threat Defense Advanced. For more information on how to add an action to a security policy, see Adding Policy Rules and Setting Precedence. 

Reporting Incorrect Data: To report incorrect data, submit the Dossier Threat Research Feedback from. For information, see Dossier Threat Research Feedback.

To create an application filter, complete the following:

  1. From the Infoblox Portal, click Configure > Security > Policies.

  2. On the Security Policies page, click the Filters tab located above the top Action bar.

  3. On the Filters page, click Create Filter on the top Action bar.

  4. From among the options displayed (Create Category Filter or Create App Filter), click Create App Filter.

  5. On the Create Application Filter page, complete the following:

    • Name: Enter a name for the content application filter. Ensure that you use a unique name for each filter. This is a required field.

    • Description: Enter a brief description of the filter. You can enter up to 256 characters.

  6. From the applications list, APPLICATIONS, expand the AVAILABLE list by clicking on the respective arrow next to the application type. Within each application category, sub categories are listed. You can add an entire application category or select among the subcategories to include in your application filtering policy. Application category filter/subcategory filter types include:

Application Categories

Application Subcategories

Application Categories

Application Subcategories

Business App Suite

163 Cloud
Adobe Creative Cloud
Articulate 360
Autodesk
Azure Cloud Services
BrightSpot
Google Docs Editors
Microsoft 365
Microsoft Office
mParticle
Tableau Software
Yandex.Cloud

Email

163 Email
Google Gmail
Microsoft Exchange
Microsoft Outlook
YahooMail

Cloud Backup and Storage

1fichier Cloud
4shared
ADrive
Allway Sync
Blomp
Box
DepositFiles
Dropbox
Filestack
Github
Google Drive
Google Photos
HiDrive
HP Cohesity
iCloud
IPFS
Jottacloud
Koofr
Microsoft OneDrive
Microsoft Substrate
MiMedia
pCloud
Sharefile
Sync
Syncwerk
Synology NAS
WEB.DE Online Storage
WeTransfer
Yandex Disk
Zippyshare

Communication

 

8x8
Google Chat
Google Voice
Microsoft Edge
Microsoft Teams
Mozilla Firefox
RingCentral
Slack

Content Delivery Network (CDN)

Akamai CDN
Vimeo

Other

AddThis
Google Maps
Medium
Narrative
OpenStreetMap

Platform as a Service (PaaS)

 

ACM
ACM Private CA
Alexa for Business
Amazon AppFlow
Amazon AppStream 2.0
Amazon CloudSearch
Amazon Chime
Amazon Cognito Identity
Amazon Cognito Sync
Amazon Comprehend
Amazon Comprehend Medical
Amazon Connect
Amazon Corretto 11
Amazon Data Lifecycle Manager
Amazon EBS
Amazon EC2
Amazon ECR
Amazon ECR Public
Amazon ECS
Amazon EFS
Amazon EKS
Amazon EMR
Amazon Fraud Detector
Amazon FSx
Amazon Inspector
Amazon IVS
Amazon Kendra
Amazon Keyspaces
Amazon Lex
Amazon Managed Grafana
Amazon Managed Service for Prometheus
Amazon MemoryDB for Redis
Amazon MQ
Amazon MSK
Amazon MSK Connect
Amazon MWAA
Amazon Personalize
Amazon Pinpoint
Amazon Polly
Amazon QuickSight
Amazon RDS
Amazon Redshift
Amazon Rekognition
Amazon S3
Amazon SES
Amazon SimpleDB
Amazon SNS
Amazon SQS
Amazon SWF
Amazon Textract
Amazon Transcribe
Amazon Translate
Amazon VPC
Amazon WorkDocs
Amazon WorkLink
Amazon WorkMail
Amplify
API Gateway
Application Auto Scaling
Application Discovery Service
Application Migration Service
App Mesh
App Runner
Athena
Attendant Pro
Audit Manager
AutoHotKey
Auto Scaling
AWS IoT 1-Click
AWS IoT 1-Click
AWS IoT Analytics
AWS IoT Core
AWS IoT Device Management
AWS IoT Events
AWS IoT Greengrass V1
AWS IoT Greengrass V2
AWS IoT RoboRunner
AWS IoT SiteWise
AWS IoT Things Graph
AWS IoT TwinMaker
AWS AppConfig
AWS AppSync
AWS Auto Scaling
AWS Batch
AWS Backup
AWS BugBust
AWS Chatbot
AWS Cloud9
AWS CloudHSM
AWS Cloud Map
AWS CodeStar
AWS CodeStar Notifications
AWS Config
AWS Data Exchange
AWS Data Pipeline
AWS Direct Connect
AWS DeepLens
AWS DeepRacer
AWS DMS
AWS Directory Service
AWS FIS
AWS Glue
AWS Ground Station
AWS Health
AWS Import/Export
AWS KMS
AWS Launch Wizard
AWS Management Console
AWS Migration Hub Refactor Spaces
AWS Marketplace
AWS OpsWorks
AWS Outposts
AWS Proton
AWS RAM
AWS RoboMaker
AWS Serverless Application Repository
AWS Service Catalog
AWS Signer
AWS Sign-In
AWS SMS
AWS SSO
AWS STS
AWS Support
AWS Systems Manager
AWS WAF
AWS WAF Classic
AWS Well-Architected Tool
Billing and Cost Management
BitDefender
Boomi
Business App
Braket
CCleaner
Cloud Control API
Cloud Directory
CloudFormation
CloudFront
CloudShell
CloudTrail
CloudWatch
CloudWatch Application Insights
CloudWatch Events
CloudWatch Logs
CloudWatch Synthetics
CodeArtifact
CodeBuild
CodeCommit
CodeDeploy
CodeGuru Profiler
CodeGuru Reviewer
CodePipeline
Compute Optimizer
DataBrew
Datadog
DataSync
Degoo
Detective
Device Farm
DevOps Guru
Devolutions Server
Digicert
Duo
DynamoDB
Egnyte
EC2 Image Builder
EC2 Instance Connect
ElastiCache
Elastic Beanstalk
Elastic Disaster Recovery
Elastic Inference
Elastic Transcoder
Elastic Load Balancing
EventBridge
EventBridge Schemas
Firewall Manager
Forecast
Foxit Software
GameLift
Global Accelerator
Google Play
Google Safe Browsing
Google Tag Manager
Granicus IQM2
GuardDuty
HealthLake
IAM
IAM Access Analyzer
ibossConnect
Incident Manager
Kaseya VSA
KeePass
Kinesis Data Analytics
Kinesis Data Firehose
Kinesis Data Streams
Kinesis Video Streams
KLCP
Lake Formation
Lambda
License Manager
Lightsail
Lookout for Equipment
Lookout for Metrics
Lookout for Vision
Macie
Managed Blockchain
Mechanical Turk
MediaConnect
MediaConvert
MediaLive
MediaPackage
MediaStore
MediaTailor
Microsoft
Microsoft Certificates
Microsoft Sharepoint
Microsoft Wallet app
Migration Hub
Migration Hub Strategy Recommendations
Mimecast
mPulse
Network Firewall
Network Manager
nextcloud
Nimble Studio
Okta
OpenSearch Service
OPSWAT Mobile App
Oracle Advanced Support Gateway
Organizations
QLDB
Qualys Time Server
Resource Groups and Tagging
Route 53
Resilience Hub
RISA
S3 Glacier
SageMaker
Secrets Manager
Security
Security Hub
Service Quotas
Shield Advanced
Skype for Business
Smart Adserver Dashboard
Snow Family
Software Development
Splunk
Step Functions
Storage Gateway
Symantec Messaging Gateway
Taboola Backstage
Timestream
Transfer Family
Trello
Vorex
WorkSpaces
X-Ray
XMind

Software Development

 

Apache Software Foundation
Archi
Comprehensive R Archive Network (CRAN)
Launch Darkly
Oracle Linux
RStudio
Visual Studio Code

Business App

 

Attendant Pro
AutoHotKey
Egnyte
Foxit Software
Granicus IQM2
KLCP
Microsoft
Microsoft Sharepoint
Microsoft Wallet app
mPulse
nextcloud
Okta
Oracle Advanced Support Gateway
RISA
Skype for Business
Smart Adserver Dashboard
Splunk
Taboola Backstage
Trello
Vorex
XMind

Security

 

BitDefender
CCleaner
Datadog
Devolutions Server
Digicert
Duo
Google Safe Browsing
ibossConnect
Kaseya VSA
KeePass
Microsoft Certificates
Mimecast
OPSWAT Mobile App
Qualys Time Server
Symantec Messaging Gateway

Video Conferencing

Blue Jeans
Solstice
Webex

Information Technology

 

Bright Sign
Cisco Meraki
Dell
DisplayLink
HP Updates
Microsoft Diagnostic Data
Microsoft Settings
mRemoteNG
ThousandEyes
Ubuntu
VMware
Windows Spotlight
Windows Update

Consumer Services

 

Amazon Shopping
Bubble Witch
Candy Crush
CDBurnerXP
eBay
Feedly
Freedom Scientific
GIMP
iTunes
Microsoft OneNote
Netflix
Opera Software
PayPal
Plex
Poly
RealNetworks
Screenpresso
speedify
Speedpass
TinyURL
Vitalsource Bookshelf
Weather app
Windows Maps
Xbox Live

AI Chatbots

Claude
ChatGPT
Bard
Perplexity AI
POE AI

Remote Connectivity

 

code4ward
Splashtop
TeamViewer

Endpoint Protection

 

ePO
ESET Protect
Falcon
Kaspersky Endpoint Security
Malwarebytes
Microsoft Defender Antivirus

VPNs & Proxies

 

express_vpn
Freegate
Hidester
HMA VPN
hotspot_shield
mullvad_vpn
proton_vpn
ProxyScrape
pure_vpn
safervpn
VPNFacile
vpn_unlimited
Your Freedom
Zscaler

Social Networking

 

Facebook
Instagram
Linkedin
Monster
OpenWeb
Pinterest
Spotify
Tencent Cloud
Tencent QQ
TikTok
Twitter
Whatsapp
Yahoo Messenger
Youtube

Search Engines

 

Bing
Google Cloud Search
Google Search
Yahoo Search
Yandex Search

Vulnerability Scanner

Nessus
Qualys Vulnerability Scan

        

7. From the From the AVAILABLE list select the checkboxes of the specific sub-applications you want to
include in the rule, and then use the arrows to move the selected subcategories from the
AVAILABLE list to the SELECTED list. You can include as many applications and sub-applications as
you want based on your needs.
8. To remove a sub-application from the SELECTED list, click the X located to the right of the sub-
application's name.
9. Click Save & Close to save or Cancel to cancel the configuration. Infoblox Cloud adds
the application filter to the list. You can now add the application filter to a security policy or to multiple
policies. For more information, see Configuring Security Policies.

NOTE: You cannot remove an existing application filter if it has been added and assigned an action in any security policies.

 

Â