[ATP/FLEX] How to block Web-Proxy on Nebula
Zyxel Employee
The user might use the Web-Proxy tool(such as steganos) to bypass Content Filter's category inspection. This article will guide you on how to use security policies to block this behavior.
Configuration steps:
Navigate to Configure > Firewall > Security policy to set the Action set to Deny and configure the Web-Proxy URLs that you would like to block on the Destination field. This will allow you to effectively block those Web-Proxy URLs.
Furthermore, you can utilize the DNS/URL Threat Filter to prevent access to Proxy-related websites through the Anonymizers category or by adding the URL to the block list.
Test Result
Attempt access to the Web-Proxy URL will result in an inability to connect.
To verify this, navigate to Site-wide> Monitor > Firewall > Event log. You will observe dropped logs generated by the security policy.
Blocked by the DNS/URL Threat Filter.
The event log indicates that.
Categories
- All Categories
- 439 Beta Program
- 2.8K Nebula
- 203 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.4K Security
- 522 USG FLEX H Series
- 330 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.3K Wireless
- 49 Wireless Ideas
- 6.9K Consumer Product
- 289 Service & License
- 462 News and Release
- 90 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.4K FAQ
- 34 Documents
- 86 About Community
- 98 Security Highlight