Ask AI - Sample Questions

• Tracking Policy Changes

  • Who was the last person to update the Internet Firewall rules, and when was it?

• Analyzing a Policy

  • What are the top 5 enabled blocking Internet Firewall rules with the most hits?
  • How many allow and block rules are there in the Internet Firewall rules?

• Researching Rule Impact

  • Are there rules preventing users from accessing social media sites?
  • Are there Internet rules that restrict access to SaaS applications?
  • Do we have rules blocking inbound connections from the Internet?

• Information about Sockets

  • Show all Sockets with their connection status, site, and version
  • When is Socket <serial number> scheduled to arrive?
  • How many Sockets are pending shipping?

• Cato Best Practice Checks

  • What should I address today to improve my security posture?
  • Are there security best practices that require attention today?
  • What is the best practices score for network security?
  • Are there any best practice checks that are disabled?

• Policy Clean-up

  • Are there any Internet Firewall rules currently inactive or disabled?

• Which sites used the most bandwidth yesterday?
• Show me traffic trends over the past 48 hours.
• How many users are connected right now?
• Who used the most bandwidth last week?
• Which sites had high packet loss last week?
• Which apps in use are considered high risk?
• What are the worst-performing ISPs in this account? Please include their IPs and average packet loss
• Which Country/PoP locations have the most remote users connected right now?
• Which remote users are running on older Client versions?

Example Questions for Global Search

• In which policies is Japan used?
• In which policies is hq_site used?
• Show all policies that reference example_group
• Where is Salesforce used across policies?
• Which policies reference 192.168.0.0/24
• Which rules apply to example_user?

Example Questions for Internet Firewall Policy

• Are there rules preventing users from accessing social media sites?
• Who was the last person to update the Internet Firewall rules, and when?
• Show me all Internet Firewall rules that are currently inactive or disabled
• Do we have rules blocking inbound connections from the Internet?

Example Questions for WAN Firewall Policy

• Show me all WAN Firewall rules between site A and site B
• Which WAN Firewall rules apply to the Finance group?
• Are there any WAN Firewall rules blocking connectivity between specific sites?
• What are the WAN Firewall rules with the most hits?

Example Questions for LAN Firewall Policy

• Show me traffic that the LAN Firewall blocks at the site HQ
• What LAN Firewall rules are configured for the guest WiFi network?
• Which LAN Firewall rules allow traffic locally without sending to the PoP?

Example Questions for TLS Inspection Policy

• Which sites or users have TLS Inspection bypassed?
• Show me TLS Inspection rules with the Inspect action
• What is the minimum TLS version and cipher suite configured in the policy?

Example Questions for Application Control Policy

• Which applications are blocked in the Application Control policy?
• Show me DLP rules for file uploads/downloads
• What SaaS applications have tenant restrictions configured?
• Are there rules restricting access to high-risk applications?

Example Questions for Client Connectivity Policies

• Which users have Always-on enabled?
• Show me Client Connectivity rules with device posture requirements
• What are the posture requirements for remote users?

Example Questions for Split Tunnel Policy

• Which applications or domains are excluded from the tunnel?
• Show me Split Tunnel rules for specific user groups
• What is the Split Tunnel configuration for remote users located in Japan?