Blocking web traffic over QUIC (Quick UDP Internet Connections) protocol

This article applies to:

• Web Filter - all versions
• WFR - all versions

Question:

• Can the Web Filter block connections over the QUIC (Quick UDP Internet Connections) protocol developed by Google?

Information:

• Web Filter is not able to block connections over the QUIC protocol.  QUIC uses UDP over ports 80 and 443. The Web Filter does not block UDP traffic.  

Recommended Actions:

• The recommended fix is to block outbound UDP on ports 80 and 443 at the firewall/UTM level.
• It is possible to disable QUIC in Chrome. Navigate to chrome://flags and disable the setting for "Experimental QUIC protocol". 
• As of Chrome version 43, the ability to disable QUIC has been added to Windows Group Policy (GPO) templates (Software\Policies\Chromium\QuicAllowed).  You can see a full set of supported policies at: http://www.chromium.org/administrators/policy-list-3