How do I connect to join.me through the Threatpulse Cloud?
search cancel

How do I connect to join.me through the Threatpulse Cloud?

book

Article ID: 166041

calendar_today

Updated On:

Products

CDP Integration Server

Issue/Introduction

I have SSL intercept enabled.
I am allowing the category "Online meetings"
Even though I allow the category online meetings, the application will not load.
If I disable SSL intercept, then join.me starts to work.
 

Resolution

The solutions presented below are based upon the fact that SSL intercept is enabled and the Online Meeting category is also allowed.  If the Online Meetings category is not allowed, then this solution will not work for you.

1.)  You can place the join.me domain into the SSL bypass list.  This will prevent Threatpulse from doing SSL intercept on the whole join.me domain.  To bypass join.me from SSL intercept, please do the following:

  • Login to the Threatpulse portal (https://portal.threatpulse.com/)
  • Click on ServiceNetworkSSLPass Through Domains/URLs
  • Click on the Add Pass Through Domains/URLs button.
  • Add join.me
  • Save,  Activate, and test.  Note:  It might take a minute or two for the change to take effect.  If it doesn't succeed the first time, keep trying or wait a few minutes and try again.

2.)  You can put in 216.52.233.0/24 into the Pass Through IPs/Subnets SSL bypass.  To do that, please do the following:

  • Login to the Threatpulse portal (https://portal.threatpulse.com/)
  • Click on ServiceNetwork > SSL > Pass Through IPs/Subnets
  • Click on the Add Pass Through IPs/Subnets button
  • Add 216.52.233.0/24* and save.
  • Save, activate and test.   Note:  It might take a minute or two for the change to take effect.  See the ADDITIONAL INFORMATION section below.

3.)  You can disable SSL intercept.  Blue Coat does not recommend disabling SSL intercept.  Please use one of the two solutions presented above

 

ADDITIONAL INFORMATION

During troubleshooting this issue, the following DNS names were used/returned:

join.me
dc.logmein-gateway.com
joinme-list.2.logmein-gateway.com
control.app02-18.join.me
dc.logmein.com.akadns.net
control.app02-17.join.me

The control.appXX-XX.join.me are a part of the 216.52.233.0/24 IP address range.  This IP address range appears to be critical in allowing the join.me application to work.  If you are blocking Online Meetings, you can use this list of domains in an allow rule to allow join.me but block all other online meeting sites.

* The IP address range of 216.52.233.0/24 was valid as of the time of this writing.  The IP address may change at any time without notice.

Powered by Wolken Software