Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 12 replies
  • Subscribers 29 subscribers
  • Views 4762 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos is blocking whatsapp even though there is no webfilter or application filter is applied

Alumco SAL

We just upgraded our hardware device from Cyberoam to Sophos XG 106(SFOS 18.0.3 MR-3), everything seems to work except that Sophos is blocking Whatsapp. I tried everything from disabling https scanning & disabling pharming protection. I even created a custom rule to allow Whatsapp based on URL and IP address but still no success. The log viewer doesn't show any blocked traffic because i enabled all the traffic. The website opens without issue but the QR code keeps loading and the desktop version doesn't work.



This thread was automatically locked due to age.
Parents
  • 0

    I don't know how to translate this into SFOS 18, but on my XG running SFOS 17.5, I had to create a firewall rule to open TCP port 5222 and also had to create a web exception for 'https decrypt and scan' for ^[A-Za-z0-9.-]*\.whatsapp\.com/ and ^[A-Za-z0-9.-]*\.whatsapp\.net/ to get What's App to run.

  • 0 in reply to Brian1941

    Is the below log belong to whatsapp traffic?

    Log comp Log subtype Firewall rule NAT rule Message Message ID Rule type Live PCAP Src IP Src port Dst IP Dst port
    Invalid Traffic Denied N/A 0 Could not associate packet to any connection. 1001 0 Open PCAP 35.241.25.170 5222 195.112.215.122 42437
    Invalid Traffic Denied N/A 0 Could not associate packet to any connection. 1001 0 Open PCAP 35.241.25.170 5222 195.112.215.122 42437
    Invalid Traffic Denied N/A 0 Could not associate packet to any connection. 1001 0 Open PCAP 35.241.25.170 5222 195.112.215.122 42437
    Invalid Traffic Denied N/A 0 Could not associate packet to any connection. 1001 0 Open PCAP 35.241.25.170 5222 195.112.215.122 42437
    Invalid Traffic Denied N/A 0 Could not associate packet to any connection. 1001 0 Open PCAP 35.241.25.170 5222 195.112.215.122 42437
    Invalid Traffic Denied N/A 0 Could not associate packet to any connection. 1001 0 Open PCAP 35.241.25.170 5222 195.112.215.122 42437
  • 0 in reply to Alumco SAL

    Hi,

    those log entries indicate that there was a  connection, but now there is no active connection.Basically the entries indicate that the packets do not match any firewall rule.  Also that traffic is incoming, your issue I thought was outgoing.

    Ian 

  • +1 in reply to rfcat_vk

    Hi guys,

    I just want to let you know that the problem has been solved. The issue was from the MicroApp-Discovery feature, when its turned on whatspp wont work, the moment i disable it whatsapp start to work without any issue. Too bad the sophos technical support after hours of troubleshooting he wasnt able to identify the issue and he blame it on my ISP. Any way thank you guys for your support.

  • 0 in reply to Alumco SAL

    Wow that's great for you but it doesn't work for me as you said I do everything but my issue it doesn't solve I have also use a third-party app such as gb whatsapp (https://gbapps.net/gbwhatsapp-apk/) to fix this issue and check how it work's but the issue doesn't solve.

Reply Children
No Data