Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 4 replies
  • Subscribers 0 subscribers
  • Views 3489 views
  • Users 0 members are here
Options
Suggested

[9.193][FEATURE] Hotspot Shield Blocking

hdamdoom
Dear all,

can anybody confirm that Hotspot Shield can be blocked by the new beta ver.

to be honest this Hotspot Shield issue with sophos UTM is really embarrassing me with my clients, even cyberoam can block why we still cant do that come on people .

Thanks in advance.
  • 0
    Dear all,

    can anybody confirm that Hotspot Shield can be blocked by the new beta ver.

    to be honest this Hotspot Shield issue with sophos UTM is really embarrassing me with my clients, even cyberoam can block why we still cant do that come on people .


    Why wouldn't you be able to block it? It's just a VPN service. There may not be a pre-canned setting to block it, but you could easily firewall it into oblivion. If that's too heavy-handed of an approach, you can also blackhole the DNS requests for *.hotspotshield.com, or if you're using the web protection, block all http(s) requests that contain IP addresses.
  • 0 in reply to agentdr8
    I recommend you go here:  UTM Application Pattern Requests: Hot (69 ideas)  and post your request for the Application Control system to be able to detect Hotspot Shield; it really would be the simplest way to control this kind of traffic (doing it via firewall rules alone could prove difficult).

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0
    i can block it via firewall rules, by adding the IP address of the hotspot shield , and they update their IP address again and again, its really exhausting to keep a track of their new addresses why its not in the App control. i was really hoping to be in the beta but it doesn't.
  • 0 in reply to hdamdoom
    i can block it via firewall rules, by adding the IP address of the hotspot shield , and they update their IP address again and again, its really exhausting to keep a track of their new addresses


    Exactly my point, blocking via firewall rules is not practical; I recommend you go to the Application Control Pattern Request site I linked above and file a request for this to be added; in general, asking for a feature request in the beta forum, or any of the forums, is much less likely to happen than using the official feature request sites that Sophos has provided.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Unfiltered HTML