Do you recognize a good idea when you see one? We want to hear from you!
Header Image

I suggest you ...

websocket support for WAF

we are hosting a SignalR hub (http://signalr.net/) behind a Sophos UTM 320. We use the Web Server Protection feature extensively in our environment, and as such have opted to use the same for this.
SignalR will always try to use Web Sockets (http://en.wikipedia.org/wiki/WebSocket), a new HTML5 API, and fallback to other technologies where this isn't possible to be used.
Since we've been hosting the hub via the reverse proxy, none of our clients are able to connect via Web Sockets :so having support for websockets in WAF would be super cool

95 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    I agree to the terms of service
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    markmark shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    3 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      Submitting...
      • Anonymous commented  ·   ·  Flag as inappropriate

        We also have the Requirement for allowing Web Sockets through WAF. We are hosting nodeJS Application wich also uses Web Sockets and falling down to an alternative connection takes to much time. Is there Any Solution on the way?

      • SimonSimon commented  ·   ·  Flag as inappropriate

        So UTM 9.3 now has apache 2.4.10 which includes the mod_proxy_wstunnel module. How about giving us a way to enable it!

      • SimonSimon commented  ·   ·  Flag as inappropriate

        This should be easy to do for Sophos as there is now a mod_proxy_wstunnel that provides this. Sophos just need to bump the version of apache they use to 2.4.5 or later (better to use 2.4.9) and allow for it in the configuration.

      Feedback and Knowledge Base