Discussion:
[Shorewall-users] Blocking QUIC traffic
Grant Pasley
2016-10-25 04:17:32 UTC
Permalink
Hi All,

I have a transparent proxy using Diladelle Web Shield and forwarding all
http / https traffic to Squid. Chrome users seem to still be able to
browse certain blocked sites, presumably because of the way Chrome uses
the QUIC protocol. What is the best method of blocking this traffic in
shorewall?
--
thanks and regards,

grant pasley.
xtranet.


---
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus
Tom Eastep
2016-10-25 15:16:53 UTC
Permalink
Post by Grant Pasley
Hi All,
I have a transparent proxy using Diladelle Web Shield and
forwarding all http / https traffic to Squid. Chrome users seem to
still be able to browse certain blocked sites, presumably because
of the way Chrome uses the QUIC protocol. What is the best method
of blocking this traffic in shorewall?
Reject any unneeded loc->net UDP traffic.

- -Tom
- --
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
Loading...