Cipafilter Support:
Support@Cipafilter.com
309 517 2022 option 2
Mon - Fri 7 AM - 6 PM CT
Google Chrome and the QUIC protocol
Posted by , Last modified by on 20 January 2015 03:45 PM

The QUIC protocol, for Quick UDP Internet Connections, is an experimental protocol developed by Google to provide security and reduced latency for traditionally connection-oriented web application traffic. For more information on QUIC, please see http://en.wikipedia.org/wiki/QUIC.

Google has begun using the QUIC protocol for certain secure connections established by the Chrome browser. Because these connections utilize UDP over ports 80 and 443 for web traffic, this can result in internet traffic not being filtered correctly.

If you encounter a situation where a user is browsing with Chrome and it appears that traffic is not being filtered, safe search is not functioning, or web traffic is not being logged, it may be necessary to create a firewall rule to block outbound UDP connections from your internal network on ports 80 and 443. By blocking this, Chrome will resort to using the standard HTTPS protocol on TCP 443 and we will intercept and filter that traffic normally.

Your rule should "Drop" UDP connections from <your internal subnet> to 0.0.0.0/0 on ports 80,443.

Blocking QUIC Protocol

 



Attachments 
 
 droppingquic.png (75.43 KB)
(2 vote(s))
Helpful
Not helpful

Comments (0)
©Cipafilter 2017. All Rights Reserved.