Detecting a vpn anonymizer in the local network and who is using it?
Freshman Member
I have an ATP500 firewall. There has been someone inside the network using express vpn before connecting to the internet. I can see in the App Patrol that it is being used, but I'd like to see if its an employee on the company network or a contractor using our guest wifi. Is there a way to log the ip and mac of the machine using the vpn anonymizer? I've tried activating the logs and using it from my machine, but I can't seem to find where in the logs it exists if it does exist. Thanks in advance for any help or ideas on the subject!!
Accepted Solution
-
Hi @mike4682,
Did you configure App Patrol to block the VPN software? If yes, the event log should record the client IP address that triggered App Patrol blocking.
Zyxel Melen0
Zyxel Employee
All Replies
-
Hi @mike4682,
Did you configure App Patrol to block the VPN software? If yes, the event log should record the client IP address that triggered App Patrol blocking.
Zyxel Melen0
Categories
- All Categories
- 441 Beta Program
- 2.9K Nebula
- 210 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.4K Security
- 539 USG FLEX H Series
- 340 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.3K Wireless
- 51 Wireless Ideas
- 6.9K Consumer Product
- 295 Service & License
- 464 News and Release
- 90 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.7K FAQ
- 34 Documents
- 86 About Community
- 99 Security Highlight
