cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
mardes
Level 7
Report Inappropriate Content
Message 1 of 6
‎07-16-2013 09:02 AM

New infos for Skype detection with MWG7 proxy?

Hello!

I wonder if there are new infos concerning  Skype detection in a MWG7 proxy based internet connection.

We need a solution for allowing  Skype through MWG (V7.2.0.8)  proxy   for some users.

Because Skype has some typical network behaviour even in proxy environment and

since most network based (NG-) firewalls can detect skype traffic I think it should be possible to solve this.

In the moment we use a very simple SSL-Scanner ruleset part for Skype separation:

Skype-Rule.bmp

Membership of group PowerUsers comes from  NTLM authentication.

Of course, this disables SSL scanning for more than just Skype connections.

Is there a better solution?

Best regards,

Michael Ardes

0 Kudos
Reply
5 Replies
Former Member
Not applicable
Report Inappropriate Content
Message 2 of 6
‎07-16-2013 11:37 AM

Re: New infos for Skype detection with MWG7 proxy?

Hi Michael,

Making the assertion that any request made by IP address is skype is not a good idea. This is especially true in transparent setups.

In the past I have posted about this previously, but the cleanest way to know if a request is coming from skype is to direct it to a separate proxy port.

Here is an example ruleset I have offered:

ftp://ftp.support.securecomputing.com/outgoing/skype-proxy.zip

As far as detecting the traffic, at the moment MWG cannot differentiate between skype SSL and normal SSL. Skype SSL is a broken version of normal SSL (from what I understand).

Best,

Jon

Reply
feickholt
Level 10
Report Inappropriate Content
Message 3 of 6
‎12-16-2014 05:11 AM

Re: New infos for Skype detection with MWG7 proxy?

How prevent this solution the use of the Skype port by normal https traffice which is manual entered in internet options?

0 Kudos
Reply
smasnizk
Employee
Employee
Report Inappropriate Content
Message 4 of 6
‎02-20-2017 03:11 AM

Re: New infos for Skype detection with MWG7 proxy?

As FTP link become invalid I've reupload this rule set to ftp://ftp.webwasher.com/pub/MWG/skype-proxy.zip

-Sergej

Best Regards,
Sergej


If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!
0 Kudos
Reply
J_Cartaya
Level 7
Report Inappropriate Content
Message 5 of 6
‎11-21-2018 12:39 PM

Re: New infos for Skype detection with MWG7 proxy?

Hello, it works? I have the same issue and I cannot find a solution

0 Kudos
Reply
aloksard
Employee
Employee
Report Inappropriate Content
Message 6 of 6
‎11-22-2018 11:09 AM

Re: New infos for Skype detection with MWG7 proxy?

Hi,

Hope you are doing well.

 

Please refer below link regarding Skype through MWG:-

 

https://kc.mcafee.com/corporate/index?page=content&id=KB89194

 

https://community.mcafee.com/t5/Web-Gateway/How-Do-I-Selectively-Control-Skype-with-McAfee-Web-Prote...

 

 

Regards

Alok Sarda

0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from product experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by employees.
Join the Community
Join the Community

TrellixSkyhigh Security | Support Trellix.com SkyhighSecurity.com

Legal Privacy Copyright © 2023 Musarubra US LLC