ZA 1.18.5 | New category "Google Streaming via Quick" breaks TCP based traffic

Started by Seimus, January 30, 2025, 07:45:02 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 30, 2025, 07:45:02 PM Last Edit: January 30, 2025, 08:39:43 PM by Seimus
Hello all,

ZA 1.18.5 Introduced new App control category called Google Streaming via Quick", Which I believe was created to split general QUIC with specific QUIC for Google services. However;

ZenArmor wrongly identifies TCP based traffic as Google Streaming via Quic and as App protocol UDP which results in blocking TCP based connections for Google services if the "Google Streaming via Quick" is set to block in policies.

I did open a ticket with ZA about this.

Regards,
S.
Networking is love. You may hate it, but in the end, you always come back to it.

OPNSense HW
APU2D2 - deceased
N5105 - i226-V | Patriot 2x8G 3200 DDR4 | L 790 512G - VM HA(SOON)
N100   - i226-V | Crucial 16G  4800 DDR5 | S 980 500G - PROD
January 31, 2025, 12:04:48 AM #1
Hi,

This application features a collection of Google IPs primarily utilized for streaming, although it appears that Google employs them for various other services too. An update will be provided with the next database release.
January 31, 2025, 12:11:54 AM #2
Hello Sy,

That specific category is for "Google Streaming via Quick", which I understood should only match UDP + Google IP range. Currently its matching both UDP as well TCP on various ports, which is wrong and causing a lot of problems.

But glad to hear it will be fixed.

Regards,
S.
Networking is love. You may hate it, but in the end, you always come back to it.

OPNSense HW
APU2D2 - deceased
N5105 - i226-V | Patriot 2x8G 3200 DDR4 | L 790 512G - VM HA(SOON)
N100   - i226-V | Crucial 16G  4800 DDR5 | S 980 500G - PROD
Print
Go Up Pages1
User actions