I want to lock down Internet access for some machines to just allow them to use Zoom, but using the App-ID means I have to allow SSL and STUN too and I don't want that as that opens up a ton of other sites, Anyone have any suggestions? Maybe a URL filter allowing just the *zoom.us domain?
You could setup a custom URL category to match *.zoom.us traffic, but be mindful that you need to allow enough traffic to pass to identify the destination domain. Zoom also publishes their IP ranges at https://assets.zoom.us/docs/ipranges/ZoomMeetings.txt that you could either manually input or simply setup a MineMeld miner and use it in an EDL if you have MineMeld setup.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!