This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Exclude "by application" for IPS and Web filtering? Is it possible? (Network visibility)

I want to be able to exclude the Steam client from the IPS since the IPS drastically slows down game downloads, but in the "exclusion" settings within the IPS there are only exclusion options for requests:

1. Coming from these source networks,

2. Using these services

3. Going to these destinations.

Steam has no way of manually specifying which port to download games from.

Since the UTM contains the Flow Monitor and can see Steam, I am wondering why there is no way to create IPS or Web Filtering rules for specific applications as long as flow monitor is enabled.

If not, I will have to create a service definition for Steam based on the range of ports that Steam uses then add that service to the exclusions in the IPS.

UTM latest version, using URL filtering only, transparent mode.

This thread was automatically locked due to age.

Top Replies

alan weir over 1 year ago in reply to Vivek Jagad +1

Yes, thank you. I tried that method but I noticed that Steam actually was using the 60,000 port range to download games. Steam also uses port 80 to download games too, so I won't be adding port 80 to any…

Parents

Vivek Jagad over 1 year ago

Hello alan weir,

Thank you for reaching out to the community, I believe the best option will be to use the second option :"Using these services" and then you can "Add the service definition" for steam.
> Required Ports for Steam: https://help.steampowered.com/en/faqs/view/2EA8-4D75-DA21-31EB

Thanks & Regards,
_______________________________________________________________

Vivek Jagad | Team Lead, Global Support & Services

Log a Support Case | Sophos Service Guide
Best Practices – Support Case

Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
alan weir over 1 year ago in reply to Vivek Jagad

Yes, thank you. I tried that method but I noticed that Steam actually was using the 60,000 port range to download games. Steam also uses port 80 to download games too, so I won't be adding port 80 to any service definition.

I will just have to tweak my rules until I get better speeds.

However all of the IP addresses that Steam downloads from are "valve.net" domains. I'll continue to look for ways to create a definition for any IPs coming from "valve.net" as a source network.
Cancel
Vote Up +1 Vote Down

Cancel

Reply

alan weir over 1 year ago in reply to Vivek Jagad

Yes, thank you. I tried that method but I noticed that Steam actually was using the 60,000 port range to download games. Steam also uses port 80 to download games too, so I won't be adding port 80 to any service definition.

I will just have to tweak my rules until I get better speeds.

However all of the IP addresses that Steam downloads from are "valve.net" domains. I'll continue to look for ways to create a definition for any IPs coming from "valve.net" as a source network.
Cancel
Vote Up +1 Vote Down

Cancel

Children

No Data