Technical Tip: How to block Web WhatsApp file uplo...

FortiGate

FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.

Article Id 418774

Description

This article describes how to block Web WhatsApp file uploads and downloads using Web Filter in flow-based policy.

Scope

FortiGate.

Solution

Create a firewall policy and enable a deep inspection profile.

Then start to upload files or images to WhatsApp to generate the logs.

Next, block those URLs using the URL Filter.

Add all these wildcards:

*.whatsapp-cdn-shv-02-gig4.fbcdn.net*
*.graph.whatsapp.net*
*.fna.whatsapp.net*
*.mmg.whatsapp.net*
*.cdn.whatsapp.net*

Then, enable the web filter profile on the firewall policy.

When trying to download a file, the download does not start, and when trying to send a file, the message 'Couldn't send this message' appears.

Check the policy blocking logs.

Note:

It is important to create an object with UDP ports 80 and 443 and create policy above this policy blocking QUIC connections.

Related articles:

Technical Tip: Block WhatsApp file uploads action by using application control

Technical Tip: Block WhatsApp file uploads using Web Filter when having the error 'Couldn't send thi...

143

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Technical Tip: How to block Web WhatsApp file uploads and downloads using Web Filter in flow-based policy

You are leaving our website