Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
MikePruett
Valued Contributor

Created on ‎05-18-2015 02:11 PM

Google Hangouts Getting Identified when trying to go out of DNS

We have app control applied to our DNS outbound policy.

The app only allows DNS out on the DNS policy

 

We have noticed in our logs that we see Google.Plus being identified (and blocked) on our DNS policy. Have you guys seen that? Is this common or is there something wrong on my end? Surely, Google isn't trying to tunnel Google Plus out of DNS

Mike Pruett

Fortinet GURU | Fortinet Training Videos

Mike Pruett Fortinet GURU | Fortinet Training Videos
3956
0 Kudos
1 REPLY 1
Christopher_McMullan
Staff
Staff

Created on ‎05-19-2015 06:19 AM

A quick Google search (ironic?) didn't yield any immediate clues about the ports that Google Hangouts uses, and for what purposes, but Fortinet devices use port 53 all the time for FortiGuard queries, among other things.

 

It may not be tunnelling most/all traffic through DNS, but may very well be using the port for a special purpose, name resolution-related or otherwise.

Regards, Chris McMullan Fortinet Ottawa

1746
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.