I have a MWG5500 V7 implemented as transparent bridge. everything is fine like youtube, except the cnn vedio, it always got the time out error.
CNN Video isn't working, because CNN is hosting their video files from http://ht.cdn.turner.com, which is categorized as "Business". The default rules won't bypass streaming files for this category, so content from that domain will have to pass the Virus Scanner, which needs the whole file for scanning and aither cause a delay or (in case the Progress Indication is on) will try to display the progress page. That won't work for streaming.
The default ruleset that normally would bypass streaming content can be found under Policy > Rule Sets > Gateway Antimalware. It's called "Allow Streaming Media From List Antimalware Media Type Whitelist".
Here is a screenshot of the User Interface:
Per default only URLs matching Streaming Media, Internet Radio / TV or General News are allowed to bypass the Av scanner when the media type was in the Antimalware Media Type Whitelist. You can now extend this and add the Business category to this list.
This would look like this:
The Criteria Combination at the bottom is important here, as well as the order in which your conditions are set up.
This change will allow all files from Business URLs whos media type are in the whitelist to bypass the AV engine!
If this rule is too insecure you could also create your own rule just for the ht.cdn.turner.com domain.
Here is a more restricted example that would allow streaming from the Turner Broadcasting Syste (including but not limited to CNN).
You need to create a new rule in the Gateway Antimalware rulset. The finished context would look like this:
The rule would allow streaming media from Turner with this rule criteria:
Here is the complete summary for this rule:
This should solve your problem with CNN Videos.
perfect answer. It's resolved.