Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
1616 Views 3 Replies Latest reply: Oct 4, 2013 4:53 PM by acentler RSS
paladin385 Newcomer 12 posts since
Feb 24, 2012
Currently Being Moderated

Mar 27, 2012 7:58 AM

Skype through Web Gateway



How can i allow skype traffic through web Gateway? I know that there is a problem with SSL scanner and skype. Is there a way to use some unique skype property to create exception for skype in SSL scanner rule?



  • anirajstha Newcomer 11 posts since
    May 14, 2013
    Currently Being Moderated
    1. Oct 25, 2013 7:18 AM (in response to paladin385)
    Re: Skype through Web Gateway

    Please try the following URL and acknowledge some feedbacks..

    URL is here

    Thanks in advance.




    Message was edited by: anirajstha on 10/25/13 7:18:50 AM CDT
  • pbrickey McAfee Employee 79 posts since
    Oct 13, 2011
    Currently Being Moderated
    2. Oct 4, 2013 12:16 PM (in response to paladin385)
    Re: Skype through Web Gateway

    Hi Slavko,


    You can create an additionl proxy port to point skype to and then add an exception to the SSL Scanner rule set using Proxy.Port (ex: Proxy.Port does not equal <new proxy port>). You may also want to take it a step further and apply further restrictions to that new proxy port in your policy such as blocking HTTP protocol and placing restrictive category blocks so that it is.



  • acentler Newcomer 2 posts since
    Jan 9, 2013
    Currently Being Moderated
    3. Oct 4, 2013 4:53 PM (in response to paladin385)
    Re: Skype through Web Gateway

    I just did this as a matter of fact I am clicking "save changes" now as I type. There's a KB article here somewhere I used for this so it's not an original idea and it's pretty much what pbrickey suggested. Use another port then create a policy mapping and rule set to limit what that new policy can do. I locked it down to only users in a specific skype AD group and then blocked all traffic not IP to IP based. Works like a champ.

More Like This

  • Retrieving data ...

Bookmarked By (1)


  • Correct Answers - 5 points
  • Helpful Answers - 3 points