Do you recognize a good idea when you see one? We want to hear from you!
Header Image

I suggest you ...

websocket support for WAF

we are hosting a SignalR hub (http://signalr.net/) behind a Sophos UTM 320. We use the Web Server Protection feature extensively in our environment, and as such have opted to use the same for this.
SignalR will always try to use Web Sockets (http://en.wikipedia.org/wiki/WebSocket), a new HTML5 API, and fallback to other technologies where this isn't possible to be used.
Since we've been hosting the hub via the reverse proxy, none of our clients are able to connect via Web Sockets :so having support for websockets in WAF would be super cool

174 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    markmark shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    11 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Anonymous commented  ·   ·  Flag as inappropriate

        Sophos has acquired cyberoam and websocket in cyberoam is as well not working. Support is turning a deaf ear and is terming it as a feature request with no ETA. Feel cheated as have bought the WAF subscription and now its useless. Sophos please care about the customers or else atleast publish the list of bugs for a subscription so that people are aware of the bugs before they buy.

      • Anonymous commented  ·   ·  Flag as inappropriate

        Bad move not listening to your users Sophos. We are dropping UTM9 for this exact reason.

        I shouldn't have to hack conf files to get this to work.

      • TerenceTerence commented  ·   ·  Flag as inappropriate

        This is a basic requirement for a modern web applications, WebSockets have been around for years and years now. Heck, this "feature" request has been open for 2 years.

      • WiggerlWiggerl commented  ·   ·  Flag as inappropriate

        Are there any new informations? I´ve problems with websocket-Errors in combination of HTML5-VPN-UserPortal and WAF.

      • Anonymous commented  ·   ·  Flag as inappropriate

        We also have the Requirement for allowing Web Sockets through WAF. We are hosting nodeJS Application wich also uses Web Sockets and falling down to an alternative connection takes to much time. Is there Any Solution on the way?

      • SimonSimon commented  ·   ·  Flag as inappropriate

        So UTM 9.3 now has apache 2.4.10 which includes the mod_proxy_wstunnel module. How about giving us a way to enable it!

      • SimonSimon commented  ·   ·  Flag as inappropriate

        This should be easy to do for Sophos as there is now a mod_proxy_wstunnel that provides this. Sophos just need to bump the version of apache they use to 2.4.5 or later (better to use 2.4.9) and allow for it in the configuration.

      Feedback and Knowledge Base