How to block the Google Quic Protocol

Description

How to Block the Google Quic Protocol

Resolution for SonicOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

Feature/Application:

Google QUIC is an experimental protocol aimed at reducing web latency over that of TCP. QUIC establishes secure connections between two end points using UDP. This KB article describes how to block QUIC.

Procedure:

  • Login to the SonicWall Management GUI.
  • Navigate to the Firewall | Policy | Security services | App Control
  • Check the box next to Enable App Control and click on the Accept button
  • Under Signatures tab go to Viewed by and select Application
  • Type in the search bar Quic
  • Edit Block and select Enable and select OK

Image

Enabling Application Control on zones

  • Navigate to Object | Match Objects | Zones
  • Click on the configure button under the zone where you want enable App Control
  • Check Enable App Control Service
  • Click on Save

Image

Resolution for SonicOS 6.5

This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.


Feature/Application:

Google QUIC is an experimental protocol aimed at reducing web latency over that of TCP. QUIC establishes secure connections between two end points using UDP. This KB article describes how to block QUIC.

Procedure:

  • Login to the SonicWall Management GUI
  • Navigate to the Firewall | Manage | Policies | App Control. In Gen5 TZ devices this page is under Security Services | App Control
  • Check the box next to Enable App Control and click on the Accept button at the top to enable App Control
  • Under App Control Advanced select Protocols under Application search for Quic
  • From the drop-down under Application, select QUIC
  • Click on Configure
  • In the new window, select Enable under the Block and Log fields
  • Click on OK to save

Image

Enabling Application Control on zones

  • Navigate to Network | Zones
  • Click on the configure button under the zone where you want enable App Control.
  • Check Enable App Control Service.
  • Click on OK to save.

Image

Related Articles

  • Using 31-Bit Prefixes on IPv4 Address Error: Index of the interface: Invalid IP Address
    Read More
  • How to block a website using CFS 4.0 CLI commands
    Read More
  • How to Configure Wire / Tap mode in SonicOS
    Read More

Categories

Firewalls
TZ Series
Firewalls
SonicWall SuperMassive E10000 Series
Firewalls
SonicWall SuperMassive 9000 Series
Firewalls
SonicWall NSA Series
not finding your answers?
Ask the Community
was this article helpful?
YesNo