03-15-2024 02:37 AM
Hello community,
We have a little drama with Anydesk. We are using WSA in transparent mode and redirecting all traffic on all port to WSA from PA. The problem is the Anydesk is unable to connect on port 6568. I think, the proxy is listening on port 80 and 443. What about other ports, that application is using ? Can I configure them somewhere in WSA ?
Thank you!
03-15-2024 02:44 AM
If the Proxy running Transparent and proxy only looking http and https traffic inspection,
have tested any desk with proxy ? is that works in the network where you having issue ?
Also look the WSA Logs see anything blocking ? also if you have any URL Filter that preventing access ?
try to create a bypass rule adding the anydesk related to URL see if that improve connections ?
03-15-2024 02:49 AM
The first problem is that Any desk is unable to connect on port 6568. The PA is redirecting traffic on all ports, but will WSA listening on different ports than 80 and 443?
03-15-2024 02:59 AM
Also, I see this in logs:
"10495114.949 152 x.x.x.x TCP_MISS/504 0 TCP_CONNECT 37.59.29.33:6568 - NONE/37.59.29.33 - OTHER-NONE-NONE-NONE-NONE-NONE-NONE-NONE <"-",-,-,"-",-,-,-,-,"-",-,-,-,"-",-,-,"-","-",-,-,"-",-,"-","-","-","-","-","-","-",0.00,0,-,"-","-",-,"-",-,-,"-","-",-,-,"-",-,-> - - -
"
03-15-2024 06:07 AM
By Default when you are using transparent proxy, WSA is expecting HTTP & HTTPS traffic be on ports 80 and 443,
and if by any chance you have some other HTTP/HTTPS traffic which are not using standard ports ( IE, 8080 ) you need to let WSA know to expect HTTP traffic from those ports.
So, if your WCCP router is forwarding that traffic to WSA, from WSA's configuration you need:
[1] from Network > Transparent Redirection > WCCP Service > add the port number there
[2] From Security Services > HTTPS Proxy you need to define that from port 6568 you are expecting HTTPS traffic
Please be advised above suggestion, is due to this Assumption that AnyDesk traffic is HTTPS.
Regards,
Amirhossein Mojarrad
+++++++++++++++++++++++++++++++++++++++++++++++++++
++++ If you find this answer helpful, please rate it as such ++++
+++++++++++++++++++++++++++++++++++++++++++++++++++
03-15-2024 06:46 AM
03-15-2024 07:14 AM
03-15-2024 07:26 AM
03-15-2024 07:45 AM
03-20-2024 08:11 AM
Thank you for the reply. If we change the design and switch to explicit proxy. How can we have control over applications like - zoom, anydesk and etc ? I try to block them based on Custom URLs, but it`s not working.
03-20-2024 12:15 PM
If you are trying to proxy web traffic (HTTP/HTTPS) on none standard ports ( 80,443)
[1] Configure HTTP Connect Ports : GUI > Web Security Manger > Access Policy > Protocols and User Agents
[2] From Security Services > HTTPS Proxy you need to define that from port 6568 you are expecting HTTPS traffic
Regarding Zoom, Kindly check Zoom's user guide :
Zoom network firewall or proxy server settings - Zoom Support
We support https/SSL proxy server via port 443 for Zoom traffic. Note: This does not apply to the Zoom Phone service. Zoom automatically detects your proxy settings. In some instances, you may be prompted to enter the proxy username/password. Note: We recommend allowing zoom.us and *.zoom.us from proxy or SSL inspection. |
And for AnyDesk (which I doubt), or other applications , if they are using web traffic (HTTP/HTTPS) meaning that there will be HTTP Get, HTTP response and ... you can use the same steps.
Regards,
Amirhossein Mojarrad
+++++++++++++++++++++++++++++++++++++++++++++++++++
++++ If you find this answer helpful, please rate it as such ++++
+++++++++++++++++++++++++++++++++++++++++++++++++++
03-21-2024 05:21 AM
Is their some maximum port definition in Security Services > HTTPS Proxy (like in max 8 ports in WCCP) ? Will it be a problem if I define 10-15 ports in HTTPS Proxy ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide