Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2506
Views
5
Helpful
1
Replies

PSIPHON 3 how to block using Cisco Firepower

romarroca1234
Level 1
Level 1

‎10-05-2016 05:38 AM

Hi everyone,

We are planning to buy additional control license to block application like Psiphon3.exe. Is it already possible to block that given application? I already read some thread that although there is category under vpn/proxy and the psiphon application to be block, users can still use the psiphon.

Thanks and regards,
Romar

1 person had this problem
Labels:
psiphon3.zip
0 Helpful
1 Reply 1

Farhan Mohamed
Cisco Employee
Cisco Employee

‎02-06-2017 03:24 PM

Psiphon is a tunneling application for evading censorship, however it provides no additional security for communications. The Psiphon site states, "Psiphon is designed to provide a channel to access content that is normally filtered. It is not a replacement for a secure communication environment. Psiphon will not secure e-mail, encrypt hard drive, or provide the user with end-to-end anonymity."

Psiphon uses 3 protocols:

  1. Http Proxy, which is based on newer revision documentation. SSL support has been added.
  2. SSH
  3. VPN: Ike/Ipsec/l2tp


In order to block the Psiphon, SSL and SSH decryption, as well as VPN traffic to internal segments, must be blocked.

It is very important to correctly block internal users only from using VPN related applications. Creating a rule that is too broad could potentially cause connectivity issues with remote sites.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card