Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
pottapitot
New Contributor

Created on ‎04-23-2016 08:42 AM

VPN - Prevent copying between connected systems

Hi,

We are using Fortigate 300c. Currently, users can copy data from the system they are connecting from (home computer) to the system they are connecting to (corporate system) and vice versa . Is it possible to disable this functionality for specific users or portals (including clipboard)?

 

I am sure but I heard there was also another feature that creates a temporary workspace and clears the same when VPN is disconnected. How does that work and will that help here (if it is present)?

 

I am trying to prevent possible malware transfer and DLP with this method.

 

Thanks in advance.

16359
0 Kudos
7 REPLIES 7
scerazy
New Contributor III

Created on ‎04-25-2016 11:44 PM

Of course, you seems to have NO service filtering in your SSL Policy

Just set it up & users can only connect to what you allow them to

 

5425
0 Kudos
pottapitot
New Contributor
In response to scerazy

Created on ‎04-29-2016 07:28 AM

Thanks for the response scerazy. From our end we have enabled only RDP. The user is still able to copy files to and from the connected system and the host system. The Fortigate version we are using is 5.2.6.

 

5425
0 Kudos
scerazy
New Contributor III
In response to pottapitot

Created on ‎04-29-2016 08:22 AM

Then there must be some OTHER policy that allows it!

This policy (as you see above, allows ONLY the specified service! - there is no magic to it

 

But what do you mean copy? Using Windows Explorer OR RDP mapped drives?

If the later then disable this funcionality!

 

Seb

5425
0 Kudos
emnoc
Esteemed Contributor III
In response to scerazy

Created on ‎04-29-2016 09:08 AM

Check  via cli cmd "diag debug flow" to find the fwpolicy that allows for the unintended function and then 1> modify it or 2> add a correct fwpolicy.

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
5426
0 Kudos
netmin
Contributor II
In response to emnoc

Created on ‎04-30-2016 05:15 AM

It doesn't sound like a firewall issue. I would suggest to review the group policies, especially 'device and resource redirection' capabilities: https://technet.microsoft.com/en-us/library/ee791756%28v=ws.10%29.aspx

 

 

5425
0 Kudos
Alexis_G
Contributor II
In response to netmin

Created on ‎03-06-2020 04:57 AM

Block copy paste from RDP server

https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/ee...

--------------------------------------------

If all else fails, use the force !

-------------------------------------------- If all else fails, use the force !
5426
0 Kudos
rwpatterson
Valued Contributor III
In response to Alexis_G

Created on ‎03-06-2020 05:56 AM

As jklapas stated, this is a Windows issue. Files are copied and pasted over the RDP protocol, so unless there is some granular sniffing of the traffic, there is likely no way the Fortigate will ever know what is being transferred over the connection.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
5426
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.