How to allow WeChat via the ProxySG appliance in a transparent deployment

book

Article ID: 168227

calendar_today

Updated On:

Products

Asset Management Solution ProxySG Software - SGOS

Issue/Introduction

When the ProxySG appliance is set up as a transparent proxy with SSL interception enabled on port 442, users cannot access WeChat.
 

Cause

WeChat traffic is non-standard SSL traffic.

Resolution

Tunnel WeChat apps traffic by implementing proxy services to TCP-tunnel traffic on IP subnet range 203.205.128.0/19.
You should maintain this IP bypass list to be consistent with changes at the origin content server (OCS).