This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Skype not being blocked by Application Control

Do I need to intercept https in order for Skype to be fully blocked?

This is for an ASG320 appliance (HA pair) on ver 8.305

I have Network Visibility enabled and the out of the box Skype object is configured to 'block and log' for Skype application traffic from my desired source network. I even changed the source to any and Skype still loads right up and I can make calls.

The only thing I'm not doing is intercepting https, which I cannot do since this is for my Guest Wireless Network and I can't make all of the clients trust my CA. I don't want users getting cert warnings on every https page.

Does anyone know if this will cause my Skype block rule to not work?

If not, how can I get it blocked?

Thanks!

This thread was automatically locked due to age.

0 trollvottel over 12 years ago

Hello mmartin,

I know that's not the answer you'd like to get but it's well-known and long-standing issue that Skype blocking doesn't work properly.
Cancel
Vote Up 0 Vote Down

Cancel
0 mmartin over 12 years ago

Thanks! I know that Skype if highly evasive and blocking it can be difficult. I was actually pleasantly surprised to see how easy it was to block in the ASG - until it didn't work.
Cancel
Vote Up 0 Vote Down

Cancel
0 trollvottel over 12 years ago

It works partially, Skype needs more time to connect [:)]
Cancel
Vote Up 0 Vote Down

Cancel
0 William Warren over 12 years ago

also block p2p as that is what skype is based upon. Skype is almost impossible to block 100%
Cancel
Vote Up 0 Vote Down

Cancel