How to control VPN connection

Toggle sidebar Toggle sidebar
J

JoeAdam

Honorable
Feb 15, 2013
4
0
10,510
Hello,

I am looking for a tool to block VPN connection or limit VPN connections to business related networks only, my customer is a school and students are making various VPN connections (e.g. ExpressVPN) to bypass the school censor.

My intention is to install the application on all the networks labs and limit vpn connections (SSTP or L2TP/IPSEC) to the allowed VPN, the application must be password protected.

 
Sort by date Sort by votes
eibgrad

eibgrad

Splendid
Feb 16, 2010
3,373
2
21,465
Let's assume you can block a traditional VPN. What do plan to do once the students discover these are blocked and immediately gravitate to non-traditional VPNs, like Hamachi, TeamViewer, SSH proxies back to their home server, etc.? All of these use standard protocols and ports, and in some cases, can even be remapped to ANY other port. Now you have a huge problem because it’s nearly impossible to distinguish a perfectly valid connection to Amazon from one to a user’s SSH server/proxy back home! Not unless you’re going to whitelist ALL legal destination IPs (ugg).

So while I believe you can control VPN connections to some degree, you won't stop it completely, not by a long shot. These youngins are clever and will quickly circumvent your firewall once confronted w/ your proposed obstacle. I realize that doesn’t justified NOT blocking the obvious and easy things. But I’d be sure to let the school know that they haven’t won the war here, they’ve merely shifted the battle to the next hill.

 
Upvote 0 Downvote
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom