Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 9 replies
  • Answers 1 answer
  • Subscribers 2 subscribers
  • Views 12720 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

web skype on utm9

ChristopheVandersteen

Hi,

I have a problem using skype through my sophos firewall... I can connect but not phone neither use webcam...

Nothing is logged as "blocked" in the webfilter log file... Also, I have created custom skype filter to allow traffic from a list of url I found on sophos' forums... But nothing changed.. Could you please help me ? Does anyone ever tried to use the web version of skype ? Or can you tell me how to know what exactly is blocked ?

Thanks in advance,



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    What mode is configured for Web Protection? Verify if anything associated to Skype is dropped in packetfilter.log.

    Create an exception for Skype URLs.

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    I,

    my firewall is configured as "normal" . Here is the list i allow :

    ^https://(111\.221\.74\.)([0-9]{1,3})
    ^https://(111\.221\.77\.)([0-9]{1,3})
    ^https://(157\.55\.130\.)([0-9]{1,3})
    ^https://(157\.55\.235\.)([0-9]{1,3})
    ^https://(157\.55\.56\.)([0-9]{1,3})
    ^https://(157\.56\.52\.)([0-9]{1,3})
    ^https://(213\.199\.179\.)([0-9]{1,3})
    ^https://(64\.4\.23\.)([0-9]{1,3})
    ^https://(65\.55\.223\.)([0-9]{1,3})
    ^https://(91\.190\.218\.)([0-9]{1,3}
    ^https://(90\.48\.45\.)([0-9]{1,3})
    ^http?://([A-Za-z0-9.-]*\.)?skype\.com/
    ^http?://([A-Za-z0-9.-]*\.)?skypeassets\.com/
    ^http?://browser.pipe.aria.microsoft.com/
    ^https?://clientconfig.microsoftonline-p.net
    ^https?://nexus.officewebapps.live.com
    ^https?://TENANT-NAME.onmicrosoft.com
    ^https?://[^.]*\.office.live.com
    ^https?://[^.]*\.office.net
    ^https?://[^.]*\.infra.lync.com
    ^https?://[^.]*\.online.lync.com
    ^https?://[^.]*\.lync.com
    ^https?://[^.]*\.office365.com
    ^https?://[^.]*\.microsoftonline.com
    ^https?://[^.]*\.outlook.com
    ^https?://[^.]*\.office.com
    ^https?://[^.]*\.skype.com

    actually, i've looked everywhere in utm9 and i can't find "packetfilter.log"... If you are talking about a file I must read with a ssh login, let me know, I can do it..

    Thanks for the answer

  • 0 in reply to ChristopheVandersteen

    Hi Christopher,

    If the exceptions are already configured and working as required, I think the Skype has a different issue. 

    Ah apologies, take SSH to UTM and got to var/log directory.

    Execute tail -f packetfilter.log | grep xyz(xyz = host, skype, source IP)

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

Reply Children
  • 0 in reply to sachingurung

    Hello Sachin,


    actually, I've done the work and nothing is blocked in packetfilter.log... BUT skype DOES NOT works... I'm sure my problem is from the FW, if i change it and put my old checkpoint again, it works perfectly... Do you mean I'd better stay with product from your concurrent because you can't help me ?

    Thanks in advance.

  • 0 in reply to ChristopheVandersteen

    Hi,

    What error do you face with Skype? Can you post a screenshot?

    Did you try skipping the source IP address in the transparent skip source host(if web protection is deployed in transparent mode).

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    Hi Sachin,

    As I already said, my FW is configured as "standard mode"... So I do not have any option to skip the source.

    The exact problem skype have is simple: The heavy client works well, but through the web interface (web.skype.com), I can connect to my account but impossible to call someone nor receive calls...

    Thanks.

  • 0 in reply to ChristopheVandersteen

    HI, Christophe, and welcome to the UTM Community!

    It's easier for the community to help you if you provide actual lines from logs and pictures of configurations (with proprietary information obfuscated, of course).  Does #1 in Rulz provide any insights?  If there's nothing you can show us from any of those logs and nothing from the Web Filtering log, you should open a case with a Sophos pre-sales engineer via Sophos Sales.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to ChristopheVandersteen

    Hi Boris , 

    WIth HTTPS Scanning enabled , you may add these URLS in Exceptions and check 

     

      • ^([A-Za-z0-9.-]*\.)?live\.com/
      • ssw.live.com
      • secure-sin.adnxs.com
      • urlp.asm.skype.com
      • go.trouter.io
      • apps.skype.com
      • mobile.pipe.aria.microsoft.com
      • ^([A-Za-z0-9.-]*\.)?hotmail\.com/
      • ^([A-Za-z0-9.-]*\.)?skype\.com/
      • skypeassets.com

    Regards,

    Aditya Patel
    Global Escalation Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'This helped me' link.

  • 0 in reply to Aditya Patel

    HTTPS scanning = Decrypt and Scan in UTM.

    Configuring an exception must work, if you still face the issue then I guess it has something to do with the Skype services.

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

Unfiltered HTML