Meraki

Community

Browser Extension based VPN

ecejhe
Here to help
‎May 3 2021 9:24 PM
‎May 3 2021 9:24 PM

Browser Extension based VPN

How to block VPN application from  Browser's Extension (Chome, Edge, Firefox).?

 

ecejhe_0-1620102231317.png

 

 

ecejhe_1-1620102231337.png

 

0 Kudos
3 Replies 3
CptnCrnch
Kind of a big deal
Kind of a big deal
‎May 4 2021 4:00 AM
‎May 4 2021 4:00 AM

From my point of view, those should also be covered by "Proxy Avoidance" using Layer 7 rules.

0 Kudos
In response to CptnCrnch
ecejhe
Here to help
‎May 4 2021 6:27 AM
‎May 4 2021 6:27 AM

Upon checking, there is no "Proxy Avoidance" on the layer 7 firewall rules.

We are using MX400 version MX 14.53

 

Only got this

ecejhe_0-1620134948534.png

 

 

Also, we have filtered it below:

ecejhe_0-1620135070641.png

But still VPN from the browser is able to bypass the firewall and able to access the internet without restriction

 

0 Kudos
In response to ecejhe
Inderdeep
Kind of a big deal
Kind of a big deal
‎May 4 2021 9:41 AM
‎May 4 2021 9:41 AM

@ecejhe : the VPNs are under the category of "Proxy Avoidance and Anonymizers" which you did i saw. Create outbound deny rules for ports 500, 1701, 4500, and 1723

Check the troubleshooting doc

https://documentation.meraki.com/MX/Client_VPN/Guided_Client_VPN_Troubleshooting#Resolving_NetBIOS_n...

 

Check this one for troubleshooting 

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/Blocking_Websites_with_Content_Filt...

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.