cancel
Showing results for 
Search instead for 
Did you mean: 
metalhead
Level 12

Block non-standard HTTP traffic

Hi all,

I did not find anything on how to block non-standard HTTP traffic (e.g. a tunneled or proprietary protocol) requested over the standard HTTP proxy.

Or is it blocked by default ?

Thanks and regards

Tom

0 Kudos
3 Replies
metalhead
Level 12

Re: Block non-standard HTTP traffic

Got a reponse directly from McAfee - Solution:

Create a rule which checks the "URL.Protocol". If it is NOT "http" or "https" block the traffic.

Cheers Tom

0 Kudos

Re: Block non-standard HTTP traffic

Cool thread, as I posted about this earlier and  wondered how this would be handled within Web Gateway.  My experience is that these proprietary applications break if they use standard 80/443 but there is never indication, or at least I could never find anything.  Might be interesting to write the results of that rule to a specific log so you can see who is trying to tunnel stuff out.

0 Kudos
metalhead
Level 12

Re: Block non-standard HTTP traffic

Yes I will try this on our internal MWG - if I get any more insights I will post them


Cheers Tom

0 Kudos