Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
708
Views
0
Helpful
1
Replies

Blocking Traffic initiated from VPN Service Providers

bnidacoc
Level 1
Level 1

‎06-19-2017 08:34 AM - edited ‎03-12-2019 06:26 AM

Is there a way to block traffic from VPN service providers like Zenmate, Private Internet Access, etc...

This is not to be confused for a request to stop our internal users from using (although equally important), we want to stop all users in the world from accessing our hosted systems via these VPN services.  

We already have "Tor_exit_node" in the Blacklist column of the security Intelligence in the Access Control Policy.  We already have a rule blocking the URL category "Proxy Avoid and Anonymizers (Any Reputation)".

We want to block all worldwide internet users who use these services from accessing our hosted systems.  Is this possible? 

1 person had this problem
Labels:
0 Helpful
1 Reply 1

bnidacoc
Level 1
Level 1

‎06-19-2017 11:10 AM

I'll also add that my one of these feeds has one IP in it and the other has nothing in it.

admin@Sourcefire3D:/var/sf/iprep_download$ more 30f9e69c-d64c-479c-821d-0e4edab8217a
#Sourcefire intelligence feed: Open_relay
210.121.84.178
admin@Sourcefire3D:/var/sf/iprep_download$ more 1b117672-7453-478c-be31-b72e89ca1acb
#Sourcefire intelligence feed: Open_proxy
admin@Sourcefire3D:/var/sf/iprep_download$

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card