07-30-2020 11:59 AM
Hi all, is there a way to block incoming traffic from known VPN providers? I see that URL filtering has a Proxy avoid and Anonymizers category that I could use in an ACP rule, but would that work for incoming traffic?
07-30-2020 08:07 PM
In ACP, you can create a policy to match VPN apps. This will be better than URL filtering unless the VPN software of your interest isn't listed in the apps. It will take couple of packets before identifying appID and blocking the connection.
Both URL filtering and application filtering work for both inbound and outbound connections.
***** please remember to rate useful posts
07-31-2020 04:35 AM
Hi, thanks for the reply. I don't understand how the application filtering would apply. Wouldn't the traffic between the VPN provider and the FTD look like "normal" traffic with no VPN application involved?
07-31-2020 06:43 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide