Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 2 answers
  • Subscribers 39 subscribers
  • Views 1403 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Denied OpenVPN connection still transferring data

Wilbur Chung

I have a strange issue today.  I have a firewall rule to block OpenVPN connections in place and it seems to work.  However, today I discovered data is still being transferred even the connection is denied.

I can see from the firewall log the connection is denied...

However, there's still live connections going on...

Also, the firewall didn't register the first 4 connections with the destination port of 5060.



This thread was automatically locked due to age.
Parents
  • 0

    Application control does not work on packet 1 and needs some more time to understand, which application it could be.

    And also, application control on a firewall level could be tricky, if the app is trying to hide what it does. VPNs tend to do this (destination port is not sufficient to assume, what it is). The traffic is encrypted, so it can be hard to assume something.

    Therefore application control on the endpoint is much more clearer and a better approach to stop apps in the first place. Even if you stop traffic, the app is still there and running. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    That's a good suggestion, I'll look into this.

    Thank you.

Reply Children
No Data
Unfiltered HTML