Hi Team
I have a problem with youtube,i have denied it on layer seven firewall on group policies but i can access it using android application
The rule will not prevent you from opening the application, but you must not play the videos.
You can try blocking QUIC.
QUIC (Quick UDP Internet Connections, pronounced quick) is an experimental transport layer network protocol developed by Google. QUIC supports a set of multiplexed connections between two endpoints over User Datagram Protocol (UDP), and was designed to provide security protection equivalent to TLS/SSL, along with reduced connection and transport latency, and bandwidth estimation in each direction to avoid congestion. QUIC's main goal is to optimize connection-oriented web applications currently using TCP. An experimental implementation is being put in place in Chrome by a team of engineers at Google.
What happens if QUIC is not blocked?
Chrome browsers have the QUIC protocol enabled by default. When users try to access Google applications using the Chrome browser, a session to a Google server is established using the QUIC protocol instead of TLS/SSL. QUIC is an experimental protocol at its early stages of development, and it uses proprietery encryption methods.
@Gerald3K try creating an additional L3 policy to block QUIC UDP traffic (UDP/443 and UDP/80). And yes, It uses UDP instead TCP.
Have you tried block YouTube on content filtering page?
Would the correct way to block it be:
I think I've fixed this now - I had to change the source port from 443,80 to Any and I can now see hits against it and when using the 'Security' tab in Developer Tools it now shows TLS 1.3 rather than QUIC.
You could also create a L3 firewall rule to block the FQDN youtube.com.
Security & SD-WAN/Firewall