I'm attempting to block TOR so that CryptoLocker/CryptoWall has no contact by which to download and encrypt my users workstations.
I have version 4 MR3 Patch 11 of the FortiOS on my Fortigate 300C.
All the information I've found says to use the Application Control section to setup blocking with TOR and Tor2Web, then attach the Application Control to the Outbound policy (Internal to Internet) in Policies. I have done so, but the TOR Web Browser still allows me to browse out. Is this an accurate way of being able to tell if outbound TOR is blocked, or is there another way?
I'm not sure this is working. Any help would be greatly appreciated.
Maybe the following CookBook article will help:
http://cookbook.fortinet.com/blocking-monitoring-tor-traffic/
NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.