https://community.cisco.com/t5/network-security/securely-handling-stun-traffic/m-p/4055528#M1068435 <P>As it is right now I block all STUN traffic.&nbsp; However there is a legitimate use case for it.&nbsp; What is the recommended secure way to handle STUN traffic.&nbsp; Can it be man in the middle-ed like SSL or are there other options to securely inspect the traffic?</P><P>&nbsp;</P><P>Thanks</P> Mon, 30 Mar 2020 21:37:39 GMT Kirk 2020-03-30T21:37:39Z https://community.cisco.com/t5/network-security/securely-handling-stun-traffic/m-p/4055528#M1068435 <P>As it is right now I block all STUN traffic.&nbsp; However there is a legitimate use case for it.&nbsp; What is the recommended secure way to handle STUN traffic.&nbsp; Can it be man in the middle-ed like SSL or are there other options to securely inspect the traffic?</P><P>&nbsp;</P><P>Thanks</P> Mon, 30 Mar 2020 21:37:39 GMT https://community.cisco.com/t5/network-security/securely-handling-stun-traffic/m-p/4055528#M1068435 Kirk 2020-03-30T21:37:39Z https://community.cisco.com/t5/network-security/securely-handling-stun-traffic/m-p/4076788#M1069674 I allow STUN for Skype for business online. I set it up with a verified whitelist if IPs for the destination list, that I get off Microsoft’s website.<BR />You can try adding IP ranges or ports for source/destination to secure it without allowing everything. Thu, 30 Apr 2020 00:33:21 GMT https://community.cisco.com/t5/network-security/securely-handling-stun-traffic/m-p/4076788#M1069674 superadmin9 2020-04-30T00:33:21Z