Inspection of ISDB used by Forticlient EMS

shocko · ‎07-12-2023

I am using Forticlient/EMS 7.2.1 and configuring IPSEC and SSL VPN Tunnels on Windows 10 22H2. I wish to exclude MS teams audio/voice traffic from the tunnel to optimize this. As such on the tunnel definitions I add the cloud applications

I find however that MS teams audio/video still egress via my tunnel. On closer inspection the routes added to my windows client are a subset of the actual MS endpoints for MS teams as per this listing. I then re-configure the tunnel with these cloud applications

Now MS teams audio/video is split tunnelled and I see many more routes added to my windows client to direct this traffic outside of the tunnel.

So my question is what actual endpoints are in these cloud applications that the Forti EMS cloud is using and how can I inspect them? I need to know exactly what is in them to troubleshoot my issue.

peisenberg · ‎07-14-2023

Hi

could you please tell what you exactly mean by >

what actual endpoints are in these cloud applications that the Forti EMS cloud is using ?
>> you should be able to list all your endpoints via EMS GUI. There is also search and filter option.

what you want to inspect ?

TAC

shocko · ‎09-05-2023

The list of URLs or IPs that constitute the IDSB entry for say Microsoft-Skype_Teams