Rules for drop dns bypass, vpn, TeamViewer
All Replies
-
Maybe look at it the other way if you can inserted of block only allow given access to URL and ports and block everything else?
VPN can be hard to block when using port 443.
You can use APP patrol to select tunnelling & Thin Client and drop all.
0 -
Hi @jyjoe,You can use DNS Content Filter to block Teamviewer. Go to Security Service > Content Filter > DNS Content Filter > General and click "Add" to create a new profile. In the profile, select "Remote Access" and click "OK".
You can also add your own block list. Then apply the profile to security policy rule from LAN1/LAN2 to Any and from LAN1/LAN2 to ZyWALL.0 -
Hi @jyjoe,To block OpenVPN and Wireguard, we suggest you use App Patrol to block VPN. In App Patrol, create a new profile and select "OpenVPN" and "Wireguard". Then apply the profile to security policy rule (outgoing rule). You can consider USG FLEX 100 or ATP100. Both models support App Patrol.0
Categories
- All Categories
- 426 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 346 USG FLEX H Series
- 290 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 404 News and Release
- 86 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight