Screen OS

Hi all,

As you can see the title, we wondered how to block bypassing program like zenmate.

We've set up the network as below photo.

The setting we did is just blocking specific URL.

However, we got a problem.

That's because our customers bypass specific URL we've blocked using the zenmate.

So, I want to get a solution how to block bypassing program...

rf) I heard that we do not block bypassing program.

Even though we block this program, maybe it is not a good solution because is there another method.

Hmmm do you agree these opinion? ( http://security.stackexchange.com/questions/97206/how-to-block-detour-programs-that-bypass-firewalls )

tt

Hi,

Blocking bypaaers, tunnel programs. proxies etc., is difficult on a firewall level.

If the program uses SSL tunnels, you can try blocking zenmate.anything completely. But, users will come up with a new program to continue bypassing the system and fly under the RADAR.

A better approach is to control this on user machines, by implementing corporate access policies, program restrictions etc.,

Thank you sir...

I think Firewall does support bypassing program.

Hmm...

It is very hard to block it..

Thank you sir.

Regards,

Just to add to what Gokul has said:

Zenmate sends initial requests to following server:

zenguard.biz
zenguard.org
zenmate.io

So you can try to put them in URL blacklist.

However this is not a complete solution. Ideal solution would be to have control on which extensions, softwares end user can download & use.

Thanks & Regards,

Rushi

It's kind of you.

I'll give it a try!!