Rules for drop dns bypass, vpn, TeamViewer

jyjoe · January 2023

Hello,

With which rule can I avoid :

Dns bypass on usgflex50w?

How to avoid the use of VPNs of the following type ? :
. OpenVPN
. Wireguard

How to avoid using TeamViewer ?

Thanks for your suggestions

PeterUK · January 2023

Maybe look at it the other way if you can inserted of block only allow given access to URL and ports and block everything else?

VPN can be hard to block when using port 443.

You can use APP patrol to select tunnelling & Thin Client and drop all.

mMontana · January 2023

PeterUK said:

VPN can be hard to block when using port 443.

May I disagree? It's impossible (without whitelisting the allowed URLs/IPs) lock VPNs on Port 443.

Zyxel_Emily · January 2023

Hi @jyjoe,

You can use DNS Content Filter to block Teamviewer. Go to Security Service > Content Filter > DNS Content Filter > General and click "Add" to create a new profile. In the profile, select "Remote Access" and click "OK".

Image: https://us.v-cdn.net/6029482/uploads/editor/gm/iihv8850bwmf.jpg

You can also add your own block list. Then apply the profile to security policy rule from LAN1/LAN2 to Any and from LAN1/LAN2 to ZyWALL.

Image: https://us.v-cdn.net/6029482/uploads/editor/cr/aoaxwltagyaq.jpg

Image: https://us.v-cdn.net/6029482/uploads/editor/bx/ymrsvrb9v16z.jpg

Image: https://us.v-cdn.net/6029482/uploads/editor/d5/dl93mx0d82ts.jpg

Image: https://us.v-cdn.net/6029482/uploads/editor/3u/xdjm9w2iv6af.jpg

Zyxel_Emily · January 2023

Hi @jyjoe,

To block OpenVPN and Wireguard, we suggest you use App Patrol to block VPN. In App Patrol, create a new profile and select "OpenVPN" and "Wireguard". Then apply the profile to security policy rule (outgoing rule). You can consider USG FLEX 100 or ATP100. Both models support App Patrol.

Rules for drop dns bypass, vpn, TeamViewer

All Replies

Categories

Security Help Center