Keep in mind its prob going to attempt ssh over more than just the standard 22 port. That SID they mention for ssh in the above link. They cost 1000's in licensing for a reason )īlocking stuff on specific signatures can be done with either of the IPS packages. Or you could use one of the high cost solutions. Do they have an id in openappid for psiphon - not sure? You would have to look. With use of proxy, even dpi is possible with the openappid stuff. Now duplicate that on pfsense, which all can be done. Look at all the steps required there to "attempt" to stop it. Sorry but its not going to be click this button sort of setup. You would then need to duplicate that on pfsense. They all have guides that walk through all the different policies you have setup. Look through many of the guides on blocking it on stuff like fortinet and sonicwall and PA devices. ![]() Your going to have to do really DPI on this to be able attempt to block it, and this would require doing mitm on their ssl connections. So blocking the IPs your going to block lots of legit traffic as well.īest way to block that to be honest is control of what users can install on company equipment. So it uses standard ports and through https to lots of IPs - served up common CDNs.
0 Comments
Leave a Reply. |