Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 38 subscribers
  • Views 6165 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to totally blocked psiphon/ultrasurf

Jesen Sodela

Hi Guys,

Does anyone know how to totally blocked Psiphon? I already raised this issue to Sophos XG support, He sets ips maxpkts, QUIC, port blocking, etc. but still it bypasses the blocking. I have this issue for almost a year but until now it seems there is no solution even upgrading to the latest firmware. On the other UTM/NGFW brand/devices they can blocked Psiphon. I hope this issue soon be resolved.

Jesen

 



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Jesen Sodela

    Hi,

    very simply means you have other rules in place that allow the traffic through or you have not implemented the blocking correctly. it does work.

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Hi Sir,

    As of now, I have only 1 firewall rule (LAN - WAN) as I am testing the blocking on a isolated Sophos XG device. not sure if I missed any config but I will try it again. Thank you

  • 0 in reply to Jesen Sodela

    Okay,

    you need to

    set scanning to https and http and block QUIC

    install XG CA on device

    only allow http and https in the firewall rule

    add the web policy that blocks tunnels

    add the application policy that blocks tunnels including IP and NONE.

     

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

Unfiltered HTML