WinGate Forums

[ian0583]

How do i Filter SSL connections?

[Pascal]

Filter? What exactly do you want to do with them?

[ian0583]

selected ports are allowed

[Pascal]

How do your clients connect through WinGate? And what is establishing the SSL connections?

[ian0583]

i need to block messengers access

Client > Router >Wingate

[Pascal]

Then it should simply be a case of using the policies for Extended Networking. If your clients are using WinGate as a simple NAT then you can specify the appropriate ports you do not want access to be granted for in advanced policies.

This post and this has some details on it. The first one is of particular interest as it has Bill's list of known applications and ports.

This gives a different method using port security actions. (Firewall)

[ian0583]

in Bill's forum, there is a statement of blocking an application...how do i do that in wingate?

[Pascal]

You need something on the client side to determine what application is executing. For WinGate this is t he WGIC (WinGate Internet Client) which can be installed on each client. Then you can use WRP policies to determine what applications are allowed to run.

[ian0583]

You need something on the client side to determine what application is executing. For WinGate this is t he WGIC (WinGate Internet Client) which can be installed on each client. Then you can use WRP policies to determine what applications are allowed to run.

i already did what was in bill's forum, but Yahoo Messenger can still connect... i don't know if i have WGIC in the client PC's. is it possible to block YM even without WGIC?

[Pascal]

If you are using ENS, simply use port security actions to deny access to the ports that Yahoo Messenger is trying to use. Check the activity window in GateKeeper to isolate the ports.

[ian0583]

the messenger still connects to the internet...

[Pascal]

1. What have you done to block it so far?
2. What activity do you see in GateKeeper? (Type / port / etc.)

[ian0583]

1. What have you done to block it so far?
2. What activity do you see in GateKeeper? (Type / port / etc.)

i already added the ports used by the messenger in the ENS.
all i can see is a glimpse of a NAT connection using TCP through a certain IP which i fail to see clearly because it immediately disappers...
as of now, there is minimal activity where the only active connections are the connection to this site, and my e-mail...then i am testing the connection by using one of the clients messenger...

[Pascal]

If you are not seeing any activity in GateKeeper that looks like it could be messenger related are you sure that the traffic is actually going out through WinGate?

You might need to look at the history pane as well to see what traffic was logged. (Or alternatively you should be seeing firewall hits)

[ian0583]

there are connections logged in the history...
if the application was blocked, it would be recorded in the firewall riight?
there are no records of blocked access for yahoo...
right now, the only problem for me to block is the yahoo messenger...
other messengers have been successfully blocked...

[Pascal]

If the application was being blocked it would be logged on the firewall tab, correct. Conversely, if it was accessing the internet through WinGate it should be logged in history / activity / NAT log. Can you check the NAT log file, perhaps?

[ian0583]

yahoo messenger is a tricky program. when it is blocked from the default port, it gains access to the net through HTTP using the site "shttp.msg.yahoo.com/notify"

out of curiousity, i tried to ban it in the WWW proxy policies, and guess what, the messenger was blocked...

thank for the time and the replies...