All,
I installed untangle with the belief that it's NGFW features did not require licensing. I can't find any evidence that it has any NGFW capabilities. My understanding of an NG Firewall is that it can dig into packets up to L7 to determine what application it is so you can let users see facebook for example, but not stream video.. that sort of thing. My specific needs are to block the following (at least the RTP stream):
Skype, Google Voice, facetime, Whatsapp, facebook voip calling, etc...
I can tell you that once a particular client is installed, checking the "internet phone & voip" box as a blocked category in the content filter has no effect.
Please don't give me any advice on how I can prevent installation via AD policy, prevent phone app installation from the att store, or similarly useless suggestion. This is a BYOD environment with no MDM. It was my understanding that what separates the NGFW from an ASA/Checkpoint/other rule|filter-based firewall was the ability to recognize application behavior and cut that traffic down. A check of the "firewall" section of untangle seems to simply be a place to enter rules/filters/ACL... What am I missing? Am I completely wrong about this? because I've seen PA firewalls do this very thing, but I don't have 2000 bucks for one of those.
Of course if you try to google up "block skype using a firewall" 95% of the search results are how to use AD permissions or block other skype users from contacting you - so any real insight would be appreciated.
I installed untangle with the belief that it's NGFW features did not require licensing. I can't find any evidence that it has any NGFW capabilities. My understanding of an NG Firewall is that it can dig into packets up to L7 to determine what application it is so you can let users see facebook for example, but not stream video.. that sort of thing. My specific needs are to block the following (at least the RTP stream):
Skype, Google Voice, facetime, Whatsapp, facebook voip calling, etc...
I can tell you that once a particular client is installed, checking the "internet phone & voip" box as a blocked category in the content filter has no effect.
Please don't give me any advice on how I can prevent installation via AD policy, prevent phone app installation from the att store, or similarly useless suggestion. This is a BYOD environment with no MDM. It was my understanding that what separates the NGFW from an ASA/Checkpoint/other rule|filter-based firewall was the ability to recognize application behavior and cut that traffic down. A check of the "firewall" section of untangle seems to simply be a place to enter rules/filters/ACL... What am I missing? Am I completely wrong about this? because I've seen PA firewalls do this very thing, but I don't have 2000 bucks for one of those.
Of course if you try to google up "block skype using a firewall" 95% of the search results are how to use AD permissions or block other skype users from contacting you - so any real insight would be appreciated.