WSS Policy restrictions enabled for all users as shown below
Restrict proxy traffic to standard ports enabled so that only traffic to ports 80/443 are sent
Users trying to access Web sites on non standard ports allowed through despite restrictions e.g. users accessing http://portquiz.net:8888/ or http://pridding.serveftp.com:5000 are allowed through successfully
Product defect
Applied to all WSS access methods
Can work with Broadcom Support to add policy changes to block
Fixed with WSS Portal update released August 20 2021.
It may be that WSS administrators wanted to allow ALL Web traffic through WSS but given the above defect the setting was left to restrict access to standard ports. After the fix, we will start to filter traffic the way the product was designed to work.
Any customer that has used web services with non-standard ports (80 / 443), will need to change settings to the default value to not restrict ports.