directing video meeting traffic over specific SD-WAN
Hi Everyone,
I would like to be able to direct all video meeting traffic over a specific SD-WAN - traffic like Zoom, Teams, Meet, etc.
Zoom was easy enough because they have a list of IPs and ports and so I just created a straight-forward Packet Filter for the IPs and ports and sending them via an SD-WAN.
For Teams and others, I cannot find a list of IPs, so I thought of trying Application Control. So, created a Packet Filter with Application Control for those services (when no match=allows), any external IP, TCP:0 and UDP:0, over the SD-WAN i want. Problem is that all traffic gets processed through this rule, whereas, I want it only to process things in the Application Filter. I assume that if I set the 'When no match' to drop that other traffic would just get dropped and not go onto the next Firewall Policy.
Anyone have a suggestion/know how to do this?
Thanks
Comments
For Teams, the IP addresses/DNS names to use in the destination for the policy are taken from here (https://docs.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-worldwide#skype-for-business-online-and-microsoft-teams)
There's 3 different categories of traffic - start with the "Optimize" one (noting the ports being used) and add in the "Allow" category destinations if desired.
I used the application policy to set a traffic management rule to prioritise said Teams traffic (although having it on a separate link is probably a moot point if that's the only thing it's used for).
By Meet I'm guessing that's the Google Meet app (try this page for IP addresses/DNS names - https://support.google.com/a/answer/1279090?hl=en)
Thanks PhilT_VIT. Evidently, I did not search very thoroughly for them. I've created those rules and will see how it goes.