Hello,
this is how you can enable users on the LAN to use Whatsapp chat, audio calls and video calls.
Menu "rules and policies". There I have set up my default web access policy:
LAN any to WAN any - only http, https, imap, imap-s allowed.
I´ve added one to allow ping (ICMP), too so that I can ping webservers from my client if necessary
That policy will allow Whatsapp chats but nothing more. I have IPS and APT enabled, all highrisk (level 4,5) apps blocked.
I am not using SSL interception yet.
what you need to do:
Menu "Applications"
Add an application filter from the dropdown menu the XG provides called
|
WhatsApp Web, WhatsApp, WhatsApp File Transfer, WhatsApp Video Call, WhatsApp Call
|
Action set to "allow", schedule as your policy requires
But that still does not enable calls. I still keep that policy active because I assume there´s some more detailed stuff like file upload via the web interface etc. that might have problems if you don´t set up that Web rule. So my recommedation is to still enable it.
To finally make Whatsapp audio and video calls work, you need to set up an additional firewall rule:
Menu "rules and policies".
Add a firewall rule, I call mine "whatsapp outbound"
source: LAN any
destination: WAN any
destination: add services (I call them "whatsapp ports") where you allow the necessary ports:
| Name | whatsapp ports |
| Type | TCP/UDP |
| Details | TCP (1:65535) / (5222), TCP (1:65535) / (5223), UDP (1:65535) / (3478) |
here´s the latest by Meta: https://developers.facebook.com/docs/whatsapp/guides/network-requirements/
Now all users should be able to receive inbound calls from users on the WAN, on the LAN. And initiate outbound calls to users on the WAN and LAN.
Happy whatsapping!
Alex.
This thread was automatically locked due to age.
