Organizations want to utilize a single security service that can apply security services to all customer traffic, expanding beyond cloud apps and web traffic firewalls to securely process P2P traffic over BT, FTP and UDP-based streaming protocols as well as Skype, voice, video and messaging multimedia communication sessions over SIP, and web traffic over other protocols. In one example, the security service needs to allow employees and contractors at an organization to make calls, but not transfer files, a policy that the service can enforce by encoding a SIP control channel and data channel. The enforcement of this policy necessitates more than a SIP proxy to enable the ability to anticipate where the data is getting transferred, and the ability to either avoid or block that channel, based on information in the channel. A streaming agent sending traffic looks at the port only, so needs to know all available ports before sending. If handling all protocols, the security service can catch web traffic over non-standard ports, but it is hard to gather the traffic. An existing workaround for securing files from being transferred is to block access to ports, but security services want to load everything, safely—not block ports. P2P data packets try standard ports first, and then often fall back, hopping from port to port, which also limits the usefulness of blocking a port, because the P2P data service can hop to a different port.