Filtering application protocol traffic in Web Console
You can configure traffic filtering for application protocols from Web Console. Filtering allows blocking or unblocking FTP, HTTP, MQTT, Modbus, SMTP, IMAP, and POP3 traffic.
For the MQTT protocol only version 3.1.1 filtering is supported. For SMTP protocol only basic SMTP filtering is supported. Extended SMTP protocol filtering is not supported.
To configure application protocol traffic filtering:
- In the main window of the Web Console, select Devices → Managed devices.
- Click the name of the device running Kaspersky IoT Secure Gateway 1000. If the device name is not on the list, add it to the Managed devices group.
- In the device properties window that opens, select the Applications tab.
- Press Kaspersky IoT Secure Gateway.
This opens a window containing information about Kaspersky IoT Secure Gateway 1000.
- Select the Application settings tab.
- Select Network → Filtering.
- Configure traffic filtering for application protocols as follows:
- Select the check box next to the protocols for which you want to block traffic.
- Clear the check box next to the protocols for which you want to allow traffic.
By default, traffic is allowed for all application protocols.
- Click Save in the lower part of the page to save the changes.
Kaspersky IoT Secure Gateway 1000 blocks all traffic for selected application protocols except for service traffic and allows traffic for the application protocols for which you cleared the check box.
When receiving a traffic packet that contains signs of a blocked application protocol, Kaspersky IoT Secure Gateway 1000 terminates the connection through which this traffic was exchanged. Several packets required to establish a connection may pass through Kaspersky IoT Secure Gateway 1000 after the traffic is detected, but then the connection will be terminated.
