Author Topic: Can Comodo Firewall properly filter and/or block QUIC Protocol?  (Read 689 times)

Offline jay2007tech

  • Malware Research Group
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2319
Can Comodo Firewall properly filter and/or block QUIC Protocol(I think it was created by google).  I know quic is Quick UDP

If I wanted to block Dragon or Chrome from using Quic  Protocol
Example:I would create a firewall rule to block udp 443  in order to block Quick UPD.  Then chrome will use the traditional tcp 443 chrome. Would that be right?

If true I can would also  block HTTP and SMB on the UPD side of things too as they can also use the new google protocol
It's hard being a crooked Admin when the files won't pass an md5checksum test.  But like any other good crooked Admin it can be done, it just takes time(and lots of it) and a few aspirins

Offline aim4it

  • Comodo's Hero
  • *****
  • Posts: 600
Re: Can Comodo Firewall properly filter and/or block QUIC Protocol?
« Reply #1 on: July 04, 2021, 01:12:46 AM »
I would think so. I recently edited the default browser to to allow it. Now I see UDP 443 get blocked by windows operating system after closing Firefox and the web servers are still trying to communicate to the closed browser.

Offline futuretech

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 5324
Re: Can Comodo Firewall properly filter and/or block QUIC Protocol?
« Reply #2 on: July 04, 2021, 10:39:01 AM »
Comodo firewall dose not filter on application layer only network, transport, and MAC layers, so when you block UDP you are blocking the transport protocol the application protocol uses.

Offline jay2007tech

  • Malware Research Group
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2319
Re: Can Comodo Firewall properly filter and/or block QUIC Protocol?
« Reply #3 on: July 04, 2021, 11:48:39 AM »
thank you both for the info :)  This was more of just inquiring info then need firewall help, but I understand why it got transferred here.  In a week or two, I got roughly(a small portion) 50 machines. I'll be doing this two of my own.  I'll testing it out with "wireshark" on my own machines first.  I'm going to learn more about quic online as I lack the level of knowledge on it

It's hard being a crooked Admin when the files won't pass an md5checksum test.  But like any other good crooked Admin it can be done, it just takes time(and lots of it) and a few aspirins

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek