4. How can I block websocket protocol with pfsense?

How can I block websocket protocol with pfsense?

  • S

    I've seen some corporate on-prem networks block websockets protocol and I'd like to create a test lab with pfsense configured in such a way.  How can I block websockets?  I've searched and can't seem to find a way to do this.

    0
  • Netgate Administrator

    You could probably block it with Snort given enough tuning. Snort was triggering on that anyway at one time.

    Possibly OpenAppID though I don't see a definition for that.

    Steve

    0
  • P

    Websocket runs over standard HTTP/S connection, so your only option is DPI systems.
    Snort and, probably, Squid (denying Upgrade request).

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy