Microsoft Teams Meetings funktionieren nicht mit transparentem Proxy

Hallo zusammen,

 

Wir haben ein größeres Problem in Zusammenhang mit Teams und dem transparenten Proxy. Möchte ein Nutzer hinter dem transparenten Proxy der UTM 9.702 ein Teams Meeting erstellen oder an einem solchen teilnehmen, schlägt die Verbindung fehl. Die Logs sehen an der Stelle sauber aus.

2020:04:23-13:53:28 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="192.168.150.13" dstip="52.114.250.123" user="adm-mh" group="AD-Web-IT-User" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="235" request="0xd343c000" url="worldaz.tr.teams.microsoft.com/" referer="" error="" authtime="0" dnstime="0" aptptime="88" cattime="30109" avscantime="0" fullreqtime="20706" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size,patience" category="178" reputation="neutral" categoryname="Internet Services"

2020:04:23-13:53:28 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="192.168.150.13" dstip="52.114.250.123" user="adm-mh" group="AD-Web-IT-User" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="235" request="0xb18d7100" url="worldaz.tr.teams.microsoft.com/" referer="" error="" authtime="1" dnstime="0" aptptime="72" cattime="30598" avscantime="0" fullreqtime="20920" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size,patience" category="178" reputation="neutral" categoryname="Internet Services"
2020:04:23-13:53:28 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="192.168.150.13" dstip="52.114.250.123" user="adm-mh" group="AD-Web-IT-User" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="235" request="0x10fa5800" url="worldaz.tr.teams.microsoft.com/" referer="" error="" authtime="1" dnstime="0" aptptime="5093" cattime="31318" avscantime="0" fullreqtime="26803" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size,patience" category="178" reputation="neutral" categoryname="Internet Services"
2020:04:23-13:53:28 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="192.168.150.13" dstip="52.114.250.123" user="adm-mh" group="AD-Web-IT-User" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="235" request="0xc3f52e00" url="worldaz.tr.teams.microsoft.com/" referer="" error="" authtime="1" dnstime="0" aptptime="60" cattime="30570" avscantime="0" fullreqtime="21906" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size,patience" category="178" reputation="neutral" categoryname="Internet Services"
2020:04:23-13:53:31 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="192.168.150.13" dstip="52.114.75.78" user="adm-mh" group="" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="22675" request="0x9adc300" url="mobile.pipe.aria.microsoft.com/" referer="" error="" authtime="0" dnstime="7" aptptime="107" cattime="0" avscantime="0" fullreqtime="57533" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size"
2020:04:23-13:53:32 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="192.168.150.13" dstip="52.114.75.78" user="adm-mh" group="" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="11473" request="0xd9d7d500" url="mobile.pipe.aria.microsoft.com/" referer="" error="" authtime="0" dnstime="287" aptptime="96" cattime="0" avscantime="0" fullreqtime="40896" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size"
2020:04:23-13:53:38 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="192.168.150.13" dstip="52.114.75.78" user="adm-mh" group="" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="12402" request="0xc56fce00" url="mobile.pipe.aria.microsoft.com/" referer="" error="" authtime="0" dnstime="9" aptptime="155" cattime="0" avscantime="0" fullreqtime="136922" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size"
2020:04:23-13:53:51 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="192.168.150.13" dstip="52.114.76.112" user="adm-mh" group="" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="7129" request="0xfd42e00" url="api.flightproxy.teams.microsoft.com/" referer="" error="" authtime="0" dnstime="31970" aptptime="166" cattime="0" avscantime="0" fullreqtime="960322" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size,patience"
2020:04:23-13:53:51 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="192.168.150.13" dstip="52.114.75.78" user="adm-mh" group="" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="8453" request="0x92ec300" url="mobile.pipe.aria.microsoft.com/" referer="" error="" authtime="0" dnstime="262" aptptime="110" cattime="0" avscantime="0" fullreqtime="43239" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size"
2020:04:23-13:53:52 sh-utm-2 httpproxy[23952]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="192.168.150.13" dstip="52.114.75.78" user="adm-mh" group="" ad_domain="" statuscode="200" cached="0" profile="REF_HttProContaLfsrhNetwo3 (Transparent Laptops)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="8434" request="0xc7b1dc00" url="mobile.pipe.aria.microsoft.com/" referer="" error="" authtime="0" dnstime="6" aptptime="114" cattime="0" avscantime="0" fullreqtime="233250" device="1" auth="6" ua="" exceptions="av,sandbox,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size"
 
Wie im Log ersichtlich sind für die Adressen nahezu alle möglichen Ausnahmen aktiviert. Die Authentifizierung läuft über den Agent.
 
Über einen aktivierten Standardproxy mit SSO Authentifizierung funktioniert mit dem gleichen Regelwerk die Meetingfunktion problemlos.
 
Wenn jemand einen Tipp hätte, wäre ich extrem dankbar!

Beste Grüße
Alex