This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Https scan and whatsapp

I'm using a Sophos UTM 9.2 Home Edition with an Sophos AP 30.
Yesterday I turned on https decryption and scan. Since then I can't send whatsapp messages as long as my mobile is connected via WLAN. I downloaded the https certificate onto my mobile. We are using iPhones and androids, same problem.

In the reporting I was able to find out that the Jabber Client (tcp5222) is blocked. Since it was working before without opening the port I don't know where to change the setting. Can you give me an advice?

Thanks

Roger

This thread was automatically locked due to age.

0 RPR84 over 9 years ago

I found a overview of the WhatsApp IP-ranges on the following page:
http://myip.ms/browse/ip_ranges/1/ownerID/90500/ownerID_A/1

I define network objects for this ranges and place them in a group that I named "Bypass Transparant Proxy". Then I'm going to:
- Web Protection
- Filtering Options
- Tab Misc

Below the option "Transparent mode skillets" I add the group "ByPass Transparant Proxy" at "Skip transparant mode destination hosts/nets".

I know, when WhatsApp use new IP-ranges you must define these also. But I hope this does not happen too often.
Cancel
Vote Up 0 Vote Down

Cancel
0 RPR84 over 9 years ago

It's realy hard for solving the issues with WhatsApp. WhatsApp is not using only own IP addresses but also IP addresses from SoftLayer.

Is there anybody that nows if it is possible to disable the trust certificate check for HTTPS request that using IP addresses? Thats why it is so dificult to solve this issues with WhatsApp. WhatsApp do not use FQDN addresses, but IP addresses in combination with HTTPS.
Cancel
Vote Up 0 Vote Down

Cancel