Skip to main content
womble84
womble84
New Member
April 24, 2020
Solved

Whatsapp

  • April 24, 2020
  • 1 reply
  • 5701 views

I had a client request whatsapp be opened up temporarily during this lockdown period while some of them are in the office and communicating via the app.  They had it blocked and opened it again and ensured the application policy was enabled ok and confirmed with the client it was indeed working fine.

 

The next day it stopped working, disabled the policy and re-enabled it again and working again, next day not working.  I created a new policy with the ports whatsapp uses and tried that and working and again today not working. 

 

What is causing this to stop every day?

    Best answer by Dave_Hall

    Hi Simon.

     

    We would need more information on the issue. 

     

    First what fgt firewall is the client using and how are you "allowing" the whatapp through? 

     

    Is it a combination of web filter/url filer/App sensor rules on a firewall policy? 

     

    Is this firewall policy enabled all the time or is there a set scheduled?

     

    Have you used FortiView to drill down to the indivudal device sessions to monitor what is happening when a device attempts to connect via whatapps?

     

    1 reply

    Dave_Hall
    Dave_HallAnswer
    New Member
    April 24, 2020

    Hi Simon.

     

    We would need more information on the issue. 

     

    First what fgt firewall is the client using and how are you "allowing" the whatapp through? 

     

    Is it a combination of web filter/url filer/App sensor rules on a firewall policy? 

     

    Is this firewall policy enabled all the time or is there a set scheduled?

     

    Have you used FortiView to drill down to the indivudal device sessions to monitor what is happening when a device attempts to connect via whatapps?

     

    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    April 25, 2020

    For WA access, you only need to open a couple of ports/tcp) as documented by whatsapp.com.

    I've used that myself and had no problems at all.

    Please check the policy used by this traffic does not use any webfilter, application control or DNS filter.

    Stopping traffic after a (long) time span points to a schedule in place. Be sure you don't use any here.

     

    Anyway, if your FGT really blocks this application then it should log a security event when doing so. Check the logs.

     

    Terms & ConditionsAccessibility statement