Problema com Whatsapp web Sophos UTM 9

Good afternoon,

I have a Sophos UTM 9 System with several Social Network filters and group of sectors.

User is connected to a wired network, and uses the social network Whatsapp WEB ... I have a problem sending media via the WEB, by cell phone he normally sends the media, but via Whatsapp WEB he keeps loading but does not send ... I adopted a free access policy where there is no restriction and it worked normally but I cannot leave this policy to users because if I have no problems on the Network. I've already analyzed the filter in every possible way and I can't find where the Whatsapp Web block is ... I look forward to returning,

Thanks.

  • In reply to jprusch:

    In this post the doors that should be opened are described, and I checked here and they are all released :(

  • In reply to jprusch:

    The Smartphone works normally, sending files and video calls ... the problem is on the whatsapp WEB site, where customers need to use to send documents.

    Still not working

  • In reply to Vinicius Ribeiro1:

    Which website for using WhatsApp!?!

  • In reply to Vinicius Ribeiro1:

    Hello,

    as far as I can see, there is only a need for port 5222 and 443 open for this kind of filetransfer form a pc to that portal.

    Do you have webfiltering in place?

  • In reply to jprusch:

     

    These doors are already released ... Check here.

    The filter system works according to each sector, but there is no blocking for whatsapp WEB. and I put it in the system exceptions and it's still giving me a problem


    jprusch Can't connect via remote to take a look?

  • In reply to Vinicius Ribeiro1:

    Olá Vinicius and welcome to the UTM Community!

    What do you learn from doing #1 in Rulz (last updated 2019-04-17)?  What about when examining the Web Filtering log (read #2 in Rulz)?

    Cheers - Bob

  • In reply to BAlfson:

    I couldn't understand the reasoning. Rulz # 1 I can't disable this option because it is about network security.

  • In reply to Vinicius Ribeiro1:

    Hello Vinicius,

    that recommendation from BAlfson was meant for testing only.

    PLEASE: Why don't you just test it and report your findings?

    Same thing about my other questions: you did answer a third of them, the others you don't care about...

    It's hard to help you like that, because we need to pose questions to clarify what you are doing.

  • In reply to jprusch:

    Hello jprusch.

    I understand your position, I would like to understand more what you are trying to tell me, but I am very new to the sophos system and I am doing my best to get help ... The company needs correction and I am almost opening a call on Sophos official support,

    Is there another way of contact so you can help me?
    Whatsapp, Teamviewer? I can connect to the stations and do tests in real time ...

  • In reply to Vinicius Ribeiro1:

    REPEAT

    Hello Vinicius,

    that recommendation from BAlfson was meant for testing only.

    PLEASE: Why don't you just test it and report your findings?

  • In reply to jprusch:

    In the firewall the rule is defined with these ports

     

    Eu coloquei um servidor no grupo de filtros que as estações usam, é notavel que a midia não envia pelo whatsapp web.

    Filter group where the server is.

     

    Here are the server log records, note that no blocking log appears, only access to the web.whatsapp ...

     

    Do you need any more information?
    I'm desperate, can someone help me?

  • In reply to Vinicius Ribeiro1:

    Hello Vinicius,

    1.) Firewall rules and webfilter rules are two complete separate things, although they play together.

    2.) There is a "Live Log" under "Network Protection/Firewall" which shows you drops and rejects coming from the firewall ruleset.

    3.) Your picture above shows an excerpt of the webfilter logs, which come from the webfilter profiles/actions.

     

    So please, try to check the firewall log first, if there are no drops for your host.

    Second, try to exclude 10.1.3.63 from the webfilter ruleset. Does it work then?

    If you say "server", you mean this is a client to web.whatsapp.com?