We run the Security Spy software for our security cameras. I've put it behind the WAF, and it works accessing it via a web browser.
They have an iOS app which does not work when the server is behind the WAF.
Turned off the virtual web server's Firewall Profile so it should not be blocking anything.
The developer of the Security Spy software said, "The problem is that SecuritySpy passes a custom HTTP header to the app to identify itself. This is apparently not getting passed through by your proxy. Normally there would be a configuration option in the proxy to pass all HTTP headers, and this typically solves this problem - does your Sophos device have such an option?"
To me that sounds like the 'Pass host header' option in Advanced. I turned that on, but it will does not work.
Did you select 'Enable WebSocket passthrough' in the Site Path Route?
Cheers - Bob
Thanks Bob. I didn't. Enabled it , but still doesn't work. :-(
In fact, I turned all those three options on and still nothing.
Thanks for the suggestion.
The developer of the app (Security Spy) provided some more info:
"The "Host" header is not the one that Security Spy uses - it's a custom header (which is allowed by the HTTP spec, but stripped out by some proxies unfortunately)"