Why is downloading encrypted-zip files from Google Drive not blocked despite file blocking profile and SSL Decryption are configured?

Why is downloading encrypted-zip files from Google Drive not blocked despite file blocking profile and SSL Decryption are configured?

3831
Created On 12/29/23 06:10 AM - Last Modified 07/27/24 02:37 AM


Question


Why is downloading encrypted-zip files from Google Drive not blocked despite file blocking profile and SSL Decryption are configured?
 

Environment


  • PA-Series Next-Generation Firewalls
  • Supported PAN-OS versions
  • Decryption
  • Chrome Browsers with QUIC enabled

Answer


  1. With Chrome browsers, QUIC (Quick UDP Internet Connections) protocol that works over udp/80 and udp/443 is probably being used.
  2. Since this is not a standard TLS/SSL traffic, SSL Decryption will not  work against it
  3. Block QUIC protocol to resolve the issue.

Additional Information


Google Services are Not Decrypted when Accessed from Chrome
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000008WMsCAM&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language