Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 5 subscribers
  • Views 3111 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM blocking IP RCS traffic?

Adrian Jenkinson

Hi all,

Sophos UTM version 9.605-1

Has anyone noticed RCS mobile features designed to replace SMS over high speed networks such as IP are being blocked by the sophos UTM.

I have tested this by replacing the UTM also acting as PPPoE for the VDSL authentication function with the ISP standard router.  With the standard router the RCS features started working again.

RCS uses; SIP, HTTP/HTTPS and MSRP.

It appears that RCS uses a usual protocol stacks - however, digging about in the UTM logs I can't find what is blocking the RCS - everything appears normal in the logs with SIP/HTTP/HTTPS making the connection. However, RCS fails.  The UTM must be block the TCP/IP in some way.

RCS Reading;

https://jibe.google.com/

https://www.gsma.com/newsroom/press-release/global-operators-google-and-the-gsma-align-behind-adoption-of-rcs/

http://www.diva-portal.org/smash/get/diva2:861973/FULLTEXT01 

I'm wondering has anyone else noticed this behaviour?  And could sophos throw some light on this please?



This thread was automatically locked due to age.
Parents
  • 0

    Hi Adrian and welcome to the UTM Community!

    I can imagine that using Web Filtering in Transparent mode might be an issue - are you seeing blocks in that log?  If not, then check the Firewall and Intrusion Prevent logs.  Any luck?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Bob, no I'm not seeing blocks in the log.  The UTM is in routing mode, Nating and filtering is not transparent.  Cheers I'll check the intrusion logs...

     

    I issue is only with Google Android RCS not Apple iMessage as it works fine.

  • 0 in reply to Adrian Jenkinson

    Hi all, in the process of troubleshoot I couldn't find anything in the logs.

    So ditches the old firewall and went back to version 9.408-4; low and behold it works fine now!

  • 0 in reply to Adrian Jenkinson

    Sometimes, an Up2Date "breaks" a configuration, Adrian.  It's rare, but sometimes just restoring an older backup solves the problem.  I suggest starting with the one made automatically just before the last group of Up2Dates was applied.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Cheers Bob,

    To be honest I have been mucking about with vmware ESXi 7 and a load of things broke.

    Sophos UTM 9.7 just wouldn't work in the lab on ESXi 7.

    So I thought ESX7 was at fault - but still 9.7 wouldn't work properly. Nor would 9.6.

    So I moved back to ESXi 6 - and that happily runs.  So I'm going to upgrade bit by bit on each.  The only problem is ESXi 6 went end of general support in March of this year https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/support/product-lifecycle-matrix.pdf

    And you do you know of any documentation for skipping up2date packages or do they have to be done in sequence of release? 

    Actually is there any docs for UTM9 on ESXi7 too.

     

    All the best Ade.

Reply Children
Unfiltered HTML