Streaming to YouTube fails, connection dropped by App Control

Description

When streaming to YouTube, the traffic is blocked by the SonicWall due to App Control Advanced. The traffic will be dropped as "IDP detection DROP_IP_IDP_RESET_CONNECTION".

Cause

This type of streaming uses the protocol RTMP (Real-Time Messagging Protocol) and the SonicWall will drop the first RTMP packet thus not allowing the streaming initialization.

The RTMP Protocol is also used for BitTorrent and Proxy Applications and we observed that streaming to YouTube is blocked due to SID (Signature ID) 63 and 5 of the App Control Advanced.

Resolution

In order to allow the RTMP Protocol to work fine, please disable SID 5 and 63 (or you can exclude a specific subnet or user group from these signatures):

  1. Go to Firewall | App Control Advanced
  2. Search for SID 5 and disable the block.
  3. Search for SID 63 and disable the block.

Image NOTE: You may have other signatures blocking this type of streaming so in some cases, a Log Review has to be done so you can find all the SID blocking this traffic.

 

Related Articles

  • How to block ICMP (Ping ) using Application control
    Read More
  • SonicWall GEN8 TZ and NSa Firewalls FAQ
    Read More
  • How to configure Link Aggregation
    Read More

Categories

Firewalls
SonicWall NSA Series
Application Firewall
Firewalls
SonicWall SuperMassive 9000 Series
Application Firewall
Firewalls
TZ Series
Application Firewall
not finding your answers?
Ask the Community