we are currently using mx 100 firewall and some of our user have 3 party vpn like nord vpn, and when using this vpn routing to the US the meraki policy are not working anymore, like the layer 7 and layer 3 firewall rules, is there a way where even the user uses its 3rd party VPN assign policy rules still works?
The Meraki firewall rules can't take effect because the user's traffic is being tunneled through the VPN. All the MX would see is traffic destined for the VPN provider.
You'd be better off blocking the 3rd party VPN providers to prevent users from using them.
they use the VPN for the country restriction that is needed to complete their task, i thing the host file will be our last resort on this to block unwanted sites to be visited but alot of sites to be listed
thanks bro
Welcome to the nightmare that is VPN's. Yes you can block VPN at an application level but new ones come out every day and it's really a game of cat and mouse.
The average person doesn't need a VPN even if their favourite Youtube channel tells them they do.
i think it is not possible on the layer 7 firewall there is no application for VPN and also on layer 3, is it possible to block it in the block list url patterns?
tnx bro
And always remember: Using an anonymity VPN only means that now someone else can spy on you.
their VPN is allowed and paid but its risky since they dont have any restrictions