https://community.cisco.com/t5/network-security/ftd-how-to-block-external-vpns-for-internal-users/m-p/4034598#M1066911 <P>Hello,</P><P>One of my customers has asked to block all external VPNs to avoid internal users connecting to these external VPNs and bypassing FWs defenses. How could I block this if users are trying to connect to Remote Access VPNs using SSL? Is there any way to do it if I don't know the remote SSL VPN Gateway IP? Thank you very much.</P><P>Best Regards.</P> Mon, 24 Feb 2020 10:47:26 GMT morabusa 2020-02-24T10:47:26Z https://community.cisco.com/t5/network-security/ftd-how-to-block-external-vpns-for-internal-users/m-p/4034598#M1066911 <P>Hello,</P><P>One of my customers has asked to block all external VPNs to avoid internal users connecting to these external VPNs and bypassing FWs defenses. How could I block this if users are trying to connect to Remote Access VPNs using SSL? Is there any way to do it if I don't know the remote SSL VPN Gateway IP? Thank you very much.</P><P>Best Regards.</P> Mon, 24 Feb 2020 10:47:26 GMT https://community.cisco.com/t5/network-security/ftd-how-to-block-external-vpns-for-internal-users/m-p/4034598#M1066911 morabusa 2020-02-24T10:47:26Z https://community.cisco.com/t5/network-security/ftd-how-to-block-external-vpns-for-internal-users/m-p/4034623#M1066917 Hi,<BR /><BR />FTD uses AppIDs to detect applications. This can be configured in your<BR />access control policy. Create a new policy, select the VPN category and<BR />block it. This list gets updated with FTD/FMC releases.<BR /><BR />**** please remember to rate useful posts.<BR /> Mon, 24 Feb 2020 11:26:32 GMT https://community.cisco.com/t5/network-security/ftd-how-to-block-external-vpns-for-internal-users/m-p/4034623#M1066917 Mohammed al Baqari 2020-02-24T11:26:32Z