This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How can I block QUIC without.......

Can anyone please tell me (A) How to block all QUIC traffic in and out ,and (B) will that then give me better log reports of url's visited ?.

Thanks

This thread was automatically locked due to age.

Top Replies

Vivek Jagad 6 months ago +2 verified

Hi JohnMMM , Thank you for reaching out to the community, by enabling - Block QUIC protocol - Blocks QUIC protocol by dropping outbound UDP packets to ports 80 and 443 for traffic that matches the rule…

Parents

+2 Vivek Jagad 6 months ago

Hi JohnMMM ,

Thank you for reaching out to the community, by enabling - Block QUIC protocol - Blocks QUIC protocol by dropping outbound UDP packets to ports 80 and 443 for traffic that matches the rule's criteria. It's selected by default when you select a web policy or turn on scanning for HTTP and decrypted HTTPS. Chrome uses the protocol by default to establish sessions with Google services. QUIC traffic can't be scanned and bypasses web filtering. Please refer the useful KBAs below:
> https://5t9h.short.gy/9jlfbt
> Add a firewall rule
> Control traffic requiring web proxy filtering.
> To get better reporting refer HTTPS decrypt and scan FAQ.
> Behavior of HTTPS websites when HTTPS scanning is turned off.

Thanks & Regards,
_______________________________________________________________

Vivek Jagad | Team Lead, Technical Support, Global Customer Experience

Log a Support Case | Sophos Service Guide
Best Practices – Support Case | Security Advisories
Compare Sophos next-gen Firewall | Fortune Favors the prepared
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up +2 Vote Down

Cancel
+1 dirkkotte 6 months ago in reply to Vivek Jagad

As an extension of Viveks explanation...

yes, if the firewall “sees something again” it can also check and log the traffic.

The web filter and weblogging are working again.

Dirk

Systema Gesellschaft für angewandte Datentechnik mbH // Sophos Platinum Partner
Sophos Solution Partner since 2003
If a post solves your question, click the 'Verify Answer' link at this post.
Cancel
Vote Up +1 Vote Down

Cancel
+1 rfcat_vk 6 months ago in reply to dirkkotte

Just an update, at this stage he is not using Sophos products and was answered in other post.

Ian

XG115W - v20.0.2 MR-2 - Home

XG on VM 8 - v21 GA

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up +1 Vote Down

Cancel

Reply

+1 rfcat_vk 6 months ago in reply to dirkkotte

Just an update, at this stage he is not using Sophos products and was answered in other post.

Ian

XG115W - v20.0.2 MR-2 - Home

XG on VM 8 - v21 GA

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up +1 Vote Down

Cancel

Children

No Data