Note.In this case, SSL deep inspection is required in the policy.CLI configuration.
# config application listedit "Allow_WhatsApp"# config entriesedit 1set application "28057" "37371" "40698" "39999" "49971" "49970"set action passendendend
If a WebFilter profile is used in the policy, verify if the below URLs are allowed (this example is based on the requirement to block 'Instant Messaging' and 'Web Chat' categories and allow only WhatsApp traffic):CLI configuration.
# config webfilter profileedit "Allow_WhatsApp"# config webset urlfilter-table 1end# config webfilter urlfilteredit 1set name "Auto-webfilter-urlfilter_zj9stazr3"# config entriesedit 1set url "*.whatsapp.com"set type wildcardnextedit 2set url "media-sof1-1.cdn.whatsapp.net/*"set type wildcardnext
Internal Notes
Forticare ticket# 4720710.