Dear community,
We're trying to block people using VPN services to reach our internal portal. More and more people are using VPN at home (even without knowing it, with VPN included in antivirus) and we're interested in a way to block VPN service as source when trying to connect our internal portal for our staff member.
The main problems with VPN service is that the connection can be established from anywhere in the world where regulation isn't compliant with internal policies and the second issue is that a lot of VPN services install a root CA on the client. And you can't be sure what the purpose of this.
It's possible to block main VPN services like NordVPN, UltraSurf, ExpressVPN with the FortiGate and the IP Reputation Database? Someone knows what the purpose of the "Proxy-Proxy.Server" IPs list?
Thanks for the help.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi, Fooz,
Have you tried to apply to the policy for your VPN an application Control Profile blocking this kind of VPN services? Look for the openVPN applications.
Regards,
Mauro.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1546 | |
1030 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.