4. How can I block websocket protocol with pfsense?

How can I block websocket protocol with pfsense?

  • S

    I've seen some corporate on-prem networks block websockets protocol and I'd like to create a test lab with pfsense configured in such a way.  How can I block websockets?  I've searched and can't seem to find a way to do this.

    0
  • Netgate Administrator

    You could probably block it with Snort given enough tuning. Snort was triggering on that anyway at one time.

    Possibly OpenAppID though I don't see a definition for that.

    Steve

    0
  • P

    Websocket runs over standard HTTP/S connection, so your only option is DPI systems.
    Snort and, probably, Squid (denying Upgrade request).

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy