Detecting a vpn anonymizer in the local network and who is using it?
Freshman Member
I have an ATP500 firewall. There has been someone inside the network using express vpn before connecting to the internet. I can see in the App Patrol that it is being used, but I'd like to see if its an employee on the company network or a contractor using our guest wifi. Is there a way to log the ip and mac of the machine using the vpn anonymizer? I've tried activating the logs and using it from my machine, but I can't seem to find where in the logs it exists if it does exist. Thanks in advance for any help or ideas on the subject!!
Accepted Solution
-
Hi @mike4682,
Did you configure App Patrol to block the VPN software? If yes, the event log should record the client IP address that triggered App Patrol blocking.
Zyxel Melen0
Zyxel Employee
All Replies
-
Hi @mike4682,
Did you configure App Patrol to block the VPN software? If yes, the event log should record the client IP address that triggered App Patrol blocking.
Zyxel Melen0
Categories
- All Categories
- 434 Beta Program
- 2.7K Nebula
- 174 Nebula Ideas
- 117 Nebula Status and Incidents
- 6.1K Security
- 418 USG FLEX H Series
- 297 Security Ideas
- 1.6K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 43 Wireless Ideas
- 6.7K Consumer Product
- 269 Service & License
- 416 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.1K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 87 Security Highlight
