Allow Zoom Audio/Video through Edge SWG (ProxySG)
Article ID: 269619
Updated On:
Products
Issue/Introduction
Zoom does not work using Edge SWG (ProxySG)
OR
Webex audio/video fails to connect using Edge SWG (ProxySG)
Environment
Release : 7.3.13.2
Cause
Users have difficulties with Zoom meetings over Proxy.
Resolution
ZOOM RECOMMENDATIONS FOR CONNECTIONS OVER PROXY: https://support.zoom.us/hc/en-us/articles/201362683-Network-Firewall-or-Proxy-Server-Settings-for-Zoom
We support https/SSL proxy server via port 443 for Zoom traffic.Note: This does not apply to the Zoom Phone service.Zoom automatically detects your proxy settings. In some instances, you may be prompted to enter the proxy username/password.Note: We recommend allowing zoom.us and *.zoom.us from proxy or SSL inspection.
How to implement CPL code to Proxy: https://knowledge.broadcom.com/external/article?legacyId=TECH241564
EXPLICIT DEPLOYMENTS CPL CODE:
; ################# BEGIN ZOOM BYPASS #################
<proxy>condition=zoom_Allow detect_protocol(no) authenticate(no) ALLOW
<SSL-Intercept>
condition=zoom_Allow ssl.forward_proxy(no)
define condition zoom_Allow
url.domain=zoom.us
url.domain=zoomapp.cloud
url.domain=crl3.digicert.com
url.domain=crl4.digicert.com
url.domain=ocsp.digicert.com
url.domain=crl.entrust.net
url.domain=certificates.godaddy.com
url.domain=crl.godaddy.com
url.domain=ocsp.godaddy.com
url.domain=certificates.starfieldtech.com
url.domain=crl.starfieldtech.com
url.domain=ocsp.starfieldtech.com
url.address=101.36.167.0/24
url.address=101.36.170.0/23
url.address=103.122.166.0/23
url.address=111.33.115.0/25
url.address=111.33.181.0/25
url.address=115.110.154.192/26
url.address=115.114.115.0/26
url.address=115.114.131.0/26
url.address=115.114.56.192/26
url.address=115.117.119.96/27
url.address=120.29.148.0/24
url.address=121.244.146.0/27
url.address=121.244.203.192/27
url.address=129.151.1.128/27
url.address=129.151.1.192/27
url.address=129.151.11.128/27
url.address=129.151.11.64/27
url.address=129.151.12.0/27
url.address=129.151.13.64/27
url.address=129.151.15.224/27
url.address=129.151.16.0/27
url.address=129.151.2.0/27
url.address=129.151.3.160/27
url.address=129.151.31.224/27
url.address=129.151.40.0/25
url.address=129.151.40.160/27
url.address=129.151.40.192/27
url.address=129.151.41.0/25
url.address=129.151.41.192/26
url.address=129.151.42.0/27
url.address=129.151.42.128/26
url.address=129.151.42.224/27
url.address=129.151.42.64/27
url.address=129.151.43.0/27
url.address=129.151.43.64/26
url.address=129.151.48.0/27
url.address=129.151.48.160/27
url.address=129.151.49.0/26
url.address=129.151.49.128/27
url.address=129.151.49.192/26
url.address=129.151.49.96/27
url.address=129.151.50.0/27
url.address=129.151.50.64/27
url.address=129.151.52.128/26
url.address=129.151.53.224/27
url.address=129.151.53.32/27
url.address=129.151.55.32/27
url.address=129.151.56.32/27
url.address=129.151.57.32/27
url.address=129.151.60.192/27
url.address=129.151.7.96/27
url.address=129.159.160.0/26
url.address=129.159.160.64/27
url.address=129.159.163.0/26
url.address=129.159.163.160/27
url.address=129.159.2.192/27
url.address=129.159.2.32/27
url.address=129.159.208.0/21
url.address=129.159.216.0/26
url.address=129.159.216.128/26
url.address=129.159.216.64/27
url.address=129.159.3.0/24
url.address=129.159.4.0/23
url.address=129.159.6.0/27
url.address=129.159.6.128/26
url.address=129.159.6.192/27
url.address=129.159.6.96/27
url.address=13.52.146.0/25
url.address=13.52.6.128/25
url.address=130.61.164.0/22
url.address=132.226.176.0/25
url.address=132.226.176.128/26
url.address=132.226.177.128/25
url.address=132.226.177.96/27
url.address=132.226.178.0/27
url.address=132.226.178.128/27
url.address=132.226.178.224/27
url.address=132.226.179.0/27
url.address=132.226.179.64/27
url.address=132.226.180.128/27
url.address=132.226.183.160/27
url.address=132.226.185.192/27
url.address=134.224.0.0/16
url.address=140.238.128.0/24
url.address=140.238.232.0/22
url.address=144.195.0.0/16
url.address=147.124.96.0/19
url.address=149.137.0.0/17
url.address=15.220.80.0/24
url.address=15.220.81.0/25
url.address=150.230.224.0/25
url.address=150.230.224.128/26
url.address=150.230.224.224/27
url.address=152.67.118.0/24
url.address=152.67.168.0/22
url.address=152.67.180.0/24
url.address=152.67.184.32/27
url.address=152.67.20.0/24
url.address=152.67.240.0/21
url.address=152.70.0.0/25
url.address=152.70.0.128/26
url.address=152.70.0.224/27
url.address=152.70.1.0/25
url.address=152.70.1.128/26
url.address=152.70.1.192/27
url.address=152.70.10.32/27
url.address=152.70.2.0/26
url.address=152.70.224.160/27
url.address=152.70.224.192/27
url.address=152.70.224.32/27
url.address=152.70.224.64/26
url.address=152.70.225.0/25
url.address=152.70.225.160/27
url.address=152.70.225.192/27
url.address=152.70.226.0/27
url.address=152.70.227.192/27
url.address=152.70.227.96/27
url.address=152.70.228.0/27
url.address=152.70.228.128/27
url.address=152.70.228.64/27
url.address=152.70.7.192/27
url.address=156.45.0.0/17
url.address=158.101.184.0/23
url.address=158.101.186.0/25
url.address=158.101.186.128/27
url.address=158.101.186.192/26
url.address=158.101.187.0/25
url.address=158.101.187.160/27
url.address=158.101.187.192/26
url.address=158.101.64.0/24
url.address=159.124.0.0/16
url.address=16.63.29.0/24
url.address=16.63.30.0/24
url.address=160.1.56.128/25
url.address=161.199.136.0/22
url.address=162.12.232.0/22
url.address=162.255.36.0/22
url.address=165.254.88.0/23
url.address=166.108.64.0/18
url.address=168.138.116.0/27
url.address=168.138.116.128/27
url.address=168.138.116.224/27
url.address=168.138.116.64/27
url.address=168.138.117.0/27
url.address=168.138.117.128/27
url.address=168.138.117.96/27
url.address=168.138.118.0/27
url.address=168.138.118.160/27
url.address=168.138.118.224/27
url.address=168.138.119.0/27
url.address=168.138.119.128/27
url.address=168.138.16.0/22
url.address=168.138.244.0/24
url.address=168.138.48.0/24
url.address=168.138.56.0/21
url.address=168.138.72.0/24
url.address=168.138.74.0/25
url.address=168.138.80.0/25
url.address=168.138.80.128/26
url.address=168.138.80.224/27
url.address=168.138.81.0/24
url.address=168.138.82.0/23
url.address=168.138.84.0/25
url.address=168.138.84.128/27
url.address=168.138.84.192/26
url.address=168.138.85.0/24
url.address=168.138.86.0/23
url.address=168.138.96.0/22
url.address=170.114.0.0/16
url.address=173.231.80.0/20
url.address=173.231.94.0/24
url.address=18.157.88.0/24
url.address=18.205.93.128/25
url.address=18.254.23.128/25
url.address=18.254.61.0/25
url.address=192.204.12.0/22
url.address=193.122.16.0/25
url.address=193.122.16.192/27
url.address=193.122.17.0/26
url.address=193.122.17.224/27
url.address=193.122.17.64/27
url.address=193.122.18.160/27
url.address=193.122.18.192/27
url.address=193.122.18.32/27
url.address=193.122.18.64/26
url.address=193.122.19.0/27
url.address=193.122.19.160/27
url.address=193.122.19.192/27
url.address=193.122.20.224/27
url.address=193.122.208.96/27
url.address=193.122.21.96/27
url.address=193.122.216.32/27
url.address=193.122.222.0/27
url.address=193.122.223.128/27
url.address=193.122.226.160/27
url.address=193.122.231.192/27
url.address=193.122.232.160/27
url.address=193.122.237.64/27
url.address=193.122.244.160/27
url.address=193.122.244.224/27
url.address=193.122.245.0/27
url.address=193.122.247.96/27
url.address=193.122.252.192/27
url.address=193.122.32.0/21
url.address=193.122.40.0/22
url.address=193.122.44.0/24
url.address=193.122.45.128/25
url.address=193.122.45.32/27
url.address=193.122.45.64/26
url.address=193.122.46.0/23
url.address=193.123.0.0/19
url.address=193.123.128.0/19
url.address=193.123.168.0/21
url.address=193.123.192.224/27
url.address=193.123.193.0/27
url.address=193.123.193.96/27
url.address=193.123.194.128/27
url.address=193.123.194.224/27
url.address=193.123.194.96/27
url.address=193.123.195.0/27
url.address=193.123.196.0/27
url.address=193.123.196.192/27
url.address=193.123.197.0/27
url.address=193.123.197.64/27
url.address=193.123.198.160/27
url.address=193.123.198.64/27
url.address=193.123.199.64/27
url.address=193.123.200.128/27
url.address=193.123.201.224/27
url.address=193.123.201.32/27
url.address=193.123.202.128/26
url.address=193.123.202.64/27
url.address=193.123.203.0/27
url.address=193.123.203.160/27
url.address=193.123.203.192/27
url.address=193.123.204.0/27
url.address=193.123.204.64/27
url.address=193.123.205.128/27
url.address=193.123.205.64/26
url.address=193.123.206.128/27
url.address=193.123.206.32/27
url.address=193.123.207.32/27
url.address=193.123.208.160/27
url.address=193.123.209.0/27
url.address=193.123.209.96/27
url.address=193.123.210.64/27
url.address=193.123.211.224/27
url.address=193.123.212.128/27
url.address=193.123.215.192/26
url.address=193.123.216.128/27
url.address=193.123.216.64/27
url.address=193.123.217.160/27
url.address=193.123.219.64/27
url.address=193.123.220.224/27
url.address=193.123.222.224/27
url.address=193.123.222.64/27
url.address=193.123.40.0/21
url.address=198.251.128.0/17
url.address=20.203.158.80/28
url.address=20.203.190.192/26
url.address=202.177.207.128/27
url.address=203.200.219.128/27
url.address=204.141.28.0/22
url.address=204.80.104.0/21
url.address=206.247.0.0/16
url.address=207.226.132.0/24
url.address=209.9.211.0/24
url.address=209.9.215.0/24
url.address=213.19.144.0/24
url.address=213.19.153.0/24
url.address=213.244.140.0/24
url.address=221.122.63.0/24
url.address=221.122.64.0/24
url.address=221.122.88.128/25
url.address=221.122.88.64/27
url.address=221.122.89.128/25
url.address=221.123.139.192/27
url.address=3.101.52.0/25
url.address=3.104.34.128/25
url.address=3.120.121.0/25
url.address=3.127.194.128/25
url.address=3.208.72.0/25
url.address=3.21.137.128/25
url.address=3.211.241.0/25
url.address=3.235.71.128/25
url.address=3.235.72.128/25
url.address=3.235.73.0/25
url.address=3.235.82.0/23
url.address=3.235.96.0/23
url.address=3.25.41.128/25
url.address=3.7.35.0/25
url.address=3.80.20.128/25
url.address=3.96.19.0/24
url.address=4.34.125.128/25
url.address=4.35.64.128/25
url.address=50.239.202.0/23
url.address=50.239.204.0/24
url.address=52.202.62.192/26
url.address=52.215.168.0/25
url.address=52.61.100.128/25
url.address=64.125.62.0/24
url.address=64.211.144.0/24
url.address=64.224.32.0/19
url.address=65.39.152.0/24
url.address=69.174.108.0/22
url.address=69.174.57.0/24
url.address=8.5.128.0/23
url.address=8.5.128.0/24
url.address=99.79.20.0/25end
; ################# END ZOOM BYPASS #################
TRANSPARENT DEPLOYMENTS:
FROM CONFIGURE TERMINAL IN Edge SWG (ProxySG) CLI Copy all of the below and simply paste. These are all Zoom IP ranges.
ProxySG> enableProxySG# config tProxySG(config)# proxy-servicesProxySG(config proxy-services)# create tcp-tunnel ZoomProxySG(config proxy-services)# edit Zoomadd all 101.36.167.0/24add all 101.36.170.0/23add all 103.122.166.0/23add all 111.33.115.0/25add all 111.33.181.0/25add all 115.110.154.192/26add all 115.114.115.0/26add all 115.114.131.0/26add all 115.114.56.192/26add all 115.117.119.96/27add all 120.29.148.0/24add all 121.244.146.0/27add all 121.244.203.192/27add all 129.151.1.128/27add all 129.151.1.192/27add all 129.151.11.128/27add all 129.151.11.64/27add all 129.151.12.0/27add all 129.151.13.64/27add all 129.151.15.224/27add all 129.151.16.0/27add all 129.151.2.0/27add all 129.151.3.160/27add all 129.151.31.224/27add all 129.151.40.0/25add all 129.151.40.160/27add all 129.151.40.192/27add all 129.151.41.0/25add all 129.151.41.192/26add all 129.151.42.0/27add all 129.151.42.128/26add all 129.151.42.224/27add all 129.151.42.64/27add all 129.151.43.0/27add all 129.151.43.64/26add all 129.151.48.0/27add all 129.151.48.160/27add all 129.151.49.0/26add all 129.151.49.128/27add all 129.151.49.192/26add all 129.151.49.96/27add all 129.151.50.0/27add all 129.151.50.64/27add all 129.151.52.128/26add all 129.151.53.224/27add all 129.151.53.32/27add all 129.151.55.32/27add all 129.151.56.32/27add all 129.151.57.32/27add all 129.151.60.192/27add all 129.151.7.96/27add all 129.159.160.0/26add all 129.159.160.64/27add all 129.159.163.0/26add all 129.159.163.160/27add all 129.159.2.192/27add all 129.159.2.32/27add all 129.159.208.0/21add all 129.159.216.0/26add all 129.159.216.128/26add all 129.159.216.64/27add all 129.159.3.0/24add all 129.159.4.0/23add all 129.159.6.0/27add all 129.159.6.128/26add all 129.159.6.192/27add all 129.159.6.96/27add all 13.52.146.0/25add all 13.52.6.128/25add all 130.61.164.0/22add all 132.226.176.0/25add all 132.226.176.128/26add all 132.226.177.128/25add all 132.226.177.96/27add all 132.226.178.0/27add all 132.226.178.128/27add all 132.226.178.224/27add all 132.226.179.0/27add all 132.226.179.64/27add all 132.226.180.128/27add all 132.226.183.160/27add all 132.226.185.192/27add all 134.224.0.0/16add all 140.238.128.0/24add all 140.238.232.0/22add all 144.195.0.0/16add all 147.124.96.0/19add all 149.137.0.0/17add all 15.220.80.0/24add all 15.220.81.0/25add all 150.230.224.0/25add all 150.230.224.128/26add all 150.230.224.224/27add all 152.67.118.0/24add all 152.67.168.0/22add all 152.67.180.0/24add all 152.67.184.32/27add all 152.67.20.0/24add all 152.67.240.0/21add all 152.70.0.0/25add all 152.70.0.128/26add all 152.70.0.224/27add all 152.70.1.0/25add all 152.70.1.128/26add all 152.70.1.192/27add all 152.70.10.32/27add all 152.70.2.0/26add all 152.70.224.160/27add all 152.70.224.192/27add all 152.70.224.32/27add all 152.70.224.64/26add all 152.70.225.0/25add all 152.70.225.160/27add all 152.70.225.192/27add all 152.70.226.0/27add all 152.70.227.192/27add all 152.70.227.96/27add all 152.70.228.0/27add all 152.70.228.128/27add all 152.70.228.64/27add all 152.70.7.192/27add all 156.45.0.0/17add all 158.101.184.0/23add all 158.101.186.0/25add all 158.101.186.128/27add all 158.101.186.192/26add all 158.101.187.0/25add all 158.101.187.160/27add all 158.101.187.192/26add all 158.101.64.0/24add all 159.124.0.0/16add all 16.63.29.0/24add all 16.63.30.0/24add all 160.1.56.128/25add all 161.199.136.0/22add all 162.12.232.0/22add all 162.255.36.0/22add all 165.254.88.0/23add all 166.108.64.0/18add all 168.138.116.0/27add all 168.138.116.128/27add all 168.138.116.224/27add all 168.138.116.64/27add all 168.138.117.0/27add all 168.138.117.128/27add all 168.138.117.96/27add all 168.138.118.0/27add all 168.138.118.160/27add all 168.138.118.224/27add all 168.138.119.0/27add all 168.138.119.128/27add all 168.138.16.0/22add all 168.138.244.0/24add all 168.138.48.0/24add all 168.138.56.0/21add all 168.138.72.0/24add all 168.138.74.0/25add all 168.138.80.0/25add all 168.138.80.128/26add all 168.138.80.224/27add all 168.138.81.0/24add all 168.138.82.0/23add all 168.138.84.0/25add all 168.138.84.128/27add all 168.138.84.192/26add all 168.138.85.0/24add all 168.138.86.0/23add all 168.138.96.0/22add all 170.114.0.0/16add all 173.231.80.0/20add all 173.231.94.0/24add all 18.157.88.0/24add all 18.205.93.128/25add all 18.254.23.128/25add all 18.254.61.0/25add all 192.204.12.0/22add all 193.122.16.0/25add all 193.122.16.192/27add all 193.122.17.0/26add all 193.122.17.224/27add all 193.122.17.64/27add all 193.122.18.160/27add all 193.122.18.192/27add all 193.122.18.32/27add all 193.122.18.64/26add all 193.122.19.0/27add all 193.122.19.160/27add all 193.122.19.192/27add all 193.122.20.224/27add all 193.122.208.96/27add all 193.122.21.96/27add all 193.122.216.32/27add all 193.122.222.0/27add all 193.122.223.128/27add all 193.122.226.160/27add all 193.122.231.192/27add all 193.122.232.160/27add all 193.122.237.64/27add all 193.122.244.160/27add all 193.122.244.224/27add all 193.122.245.0/27add all 193.122.247.96/27add all 193.122.252.192/27add all 193.122.32.0/21add all 193.122.40.0/22add all 193.122.44.0/24add all 193.122.45.128/25add all 193.122.45.32/27add all 193.122.45.64/26add all 193.122.46.0/23add all 193.123.0.0/19add all 193.123.128.0/19add all 193.123.168.0/21add all 193.123.192.224/27add all 193.123.193.0/27add all 193.123.193.96/27add all 193.123.194.128/27add all 193.123.194.224/27add all 193.123.194.96/27add all 193.123.195.0/27add all 193.123.196.0/27add all 193.123.196.192/27add all 193.123.197.0/27add all 193.123.197.64/27add all 193.123.198.160/27add all 193.123.198.64/27add all 193.123.199.64/27add all 193.123.200.128/27add all 193.123.201.224/27add all 193.123.201.32/27add all 193.123.202.128/26add all 193.123.202.64/27add all 193.123.203.0/27add all 193.123.203.160/27add all 193.123.203.192/27add all 193.123.204.0/27add all 193.123.204.64/27add all 193.123.205.128/27add all 193.123.205.64/26add all 193.123.206.128/27add all 193.123.206.32/27add all 193.123.207.32/27add all 193.123.208.160/27add all 193.123.209.0/27add all 193.123.209.96/27add all 193.123.210.64/27add all 193.123.211.224/27add all 193.123.212.128/27add all 193.123.215.192/26add all 193.123.216.128/27add all 193.123.216.64/27add all 193.123.217.160/27add all 193.123.219.64/27add all 193.123.220.224/27add all 193.123.222.224/27add all 193.123.222.64/27add all 193.123.40.0/21add all 198.251.128.0/17add all 20.203.158.80/28add all 20.203.190.192/26add all 202.177.207.128/27add all 203.200.219.128/27add all 204.141.28.0/22add all 204.80.104.0/21add all 206.247.0.0/16add all 207.226.132.0/24add all 209.9.211.0/24add all 209.9.215.0/24add all 213.19.144.0/24add all 213.19.153.0/24add all 213.244.140.0/24add all 221.122.63.0/24add all 221.122.64.0/24add all 221.122.88.128/25add all 221.122.88.64/27add all 221.122.89.128/25add all 221.123.139.192/27add all 3.101.52.0/25add all 3.104.34.128/25add all 3.120.121.0/25add all 3.127.194.128/25add all 3.208.72.0/25add all 3.21.137.128/25add all 3.211.241.0/25add all 3.235.71.128/25add all 3.235.72.128/25add all 3.235.73.0/25add all 3.235.82.0/23add all 3.235.96.0/23add all 3.25.41.128/25add all 3.7.35.0/25add all 3.80.20.128/25add all 3.96.19.0/24add all 4.34.125.128/25add all 4.35.64.128/25add all 50.239.202.0/23add all 50.239.204.0/24add all 52.202.62.192/26add all 52.215.168.0/25add all 52.61.100.128/25add all 64.125.62.0/24add all 64.211.144.0/24add all 64.224.32.0/19add all 65.39.152.0/24add all 69.174.108.0/22add all 69.174.57.0/24add all 8.5.128.0/23add all 8.5.128.0/24add all 99.79.20.0/25
ProxySG(config proxy-services Zoom)# exitProxySG(config proxy-services)# view services name Zoom
As for the authentication portion you can implement the following CPL.:
; ################# BEGIN ZOOM BYPASS AUTHENTICATION #################
<Proxy>service.name="Zoom" authenticate(no) ALLOW
; ################# END ZOOM BYPASS AUTHENTICATION #################
Add CPL for disabling SSL-interception for ZOOM domains as well:
; ################# BEGIN ZOOM BYPASS SSL-INTERCEPTION #################
<SSL-Intercept>
condition=zoom_ssl ssl.forward_proxy(no)
define condition zoom_ssl
url.domain=zoom.us
url.domain=zoomapp.cloud
url.domain=crl3.digicert.com
url.domain=crl4.digicert.com
url.domain=ocsp.digicert.com
url.domain=crl.entrust.net
url.domain=certificates.godaddy.com
url.domain=crl.godaddy.com
url.domain=ocsp.godaddy.com
url.domain=certificates.starfieldtech.com
url.domain=crl.starfieldtech.com
url.domain=ocsp.starfieldtech.com
end
; ################# END ZOOM SSL-INTERCEPTION #################
Note: Kindly refer to documentation below from ZOOM related to list of IP range / Domains / Ports requirements:
Additional Information
Similar actions can be taken on the resources listed for Cisco Webex in the below KB:
https://knowledge.broadcom.com/external/article?articleId=173861
Feedback
