Detecting a vpn anonymizer in the local network and who is using it?
Freshman Member
I have an ATP500 firewall. There has been someone inside the network using express vpn before connecting to the internet. I can see in the App Patrol that it is being used, but I'd like to see if its an employee on the company network or a contractor using our guest wifi. Is there a way to log the ip and mac of the machine using the vpn anonymizer? I've tried activating the logs and using it from my machine, but I can't seem to find where in the logs it exists if it does exist. Thanks in advance for any help or ideas on the subject!!
0
All Replies
-
Hi @mike4682,
Did you configure App Patrol to block the VPN software? If yes, the event log should record the client IP address that triggered App Patrol blocking.
Zyxel Melen0
Zyxel Employee
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 150 Nebula Ideas
- 97 Nebula Status and Incidents
- 5.7K Security
- 268 USG FLEX H Series
- 273 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 41 Wireless Ideas
- 6.4K Consumer Product
- 250 Service & License
- 388 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 74 Security Highlight
