Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Answers 2 answers
  • Subscribers 4 subscribers
  • Views 17323 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM 9 - Model: ASG320 Allow Users to bypass Web filtering Rules when using VPN Clients

Francois Breugem

Hi Everyone

Our UTM 9 - Model: ASG320 allow users to bypass Web filtering Rules when they use VPN client software that is freely available

 The OPRAH browser has a build in VPN that you can enable.

If you Enable the VPN in the OPRAH Browser, you can visit ANY site without been blocked by the UTM

How can I block all VPN clients that the users install to “fool” the UTM ?

Can someone please maybe assist me in this regard ?

Kind Regards

Francois



This thread was automatically locked due to age.
Parents
  • 0

    Hi Francois,

    Configure an Application Control policy to block Proxy and VPN & Tunneling applications. Any help?

    Thank You

  • 0 in reply to sachingurung

    Hi Sachin

    Trust all are well

    I did block everything in Proxy and VPN & Tunneling in Application Control policy like you suggested

    It does prevent OPRAH Browser to open any sites, which is perfect, but whats interesting is,

    is when you open OPRAH Browser and leave it open without doing anything for about 1min and 15 sec, the Browser does find a way by itself to communicate thru the UTM with its VPN Enabled.

    The OPRAH Browser's VPN icon at the left top corner changes from Red (can not connect) to Blue (connected) 

    You can then go to any site that is blocked.

    Any ideas ?

    Regards

    Francois

Reply
  • 0 in reply to sachingurung

    Hi Sachin

    Trust all are well

    I did block everything in Proxy and VPN & Tunneling in Application Control policy like you suggested

    It does prevent OPRAH Browser to open any sites, which is perfect, but whats interesting is,

    is when you open OPRAH Browser and leave it open without doing anything for about 1min and 15 sec, the Browser does find a way by itself to communicate thru the UTM with its VPN Enabled.

    The OPRAH Browser's VPN icon at the left top corner changes from Red (can not connect) to Blue (connected) 

    You can then go to any site that is blocked.

    Any ideas ?

    Regards

    Francois

Children