I am trying to block some custom VPN's like Proton VPN in security and profile ---> application control section
I am trying from the past few weeks but can't get any resolution plz anyone help me.
Application Control works efficiently only with deep-inspection ssl-ssh profile and proxy-mode policy. Can you confirm these two condiitons are met?
In the application control profile - do you have the "Proxy" category set to block?
In the application control profile - do you have the "Proxy" category set to block?
-- Yes I have set proxy section block and in ipv4 policy added deep-inspection ssl-ssh profile and proxy-mode policy
my question was how to block custom VPN, in my case I am using proton VPN, the listed proxy in FortiGate work's but how do I add any random VPN through application control
Yes, you are correct, and my advice may not be the best.
Not all VPNs are Proxy software.
You can use the following custom application control signature and the official application control signature "ISAKMP" and "OpenVPN" for Proton VPN.
F-SBID( --protocol tcp; --service SSL; --pattern "protonvpn."; --context host; --no_case; --app_cat 6; --weight 10; )
Thank you for giving me more exposure over this
can you please share the same Application signature syntax for ISKAMP, Openvpn, Turbovpn
These application signatures are available in the Application control pack:
Hi,
Does the user succesfully established?
May not be related, but I happen to successfully blocked turboVPN after block ISAKMP in appcontrol.
Hi, in my case I also had to block ESP.UDP, after blocking ISAKMP I saw it was trying to establish connections with ESP.UDP.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.