Wireless Access

Reply

How to block Psiphon

Dear Airhead,

 

I'm training to block a VPN Proxy App called Psiphon.

the App is in the APP list of the PEFNG.

i'm using the Aruba OS version 6.4.4.10 in controllers 7210.

and i have alredy activated deep inspection.

 

the issue is that , the controller is not blocking this traffic

 

Regards


Raouf CHAHBOUNE
ICT Network & Security Engineer
CCNP R/S | CCNA Security | ACMP|ACCP|ACDX



[If my post is helpful please give kudos, or mark as solved if it answers your post.]

Re: How to block Psiphon

any   idea guys ??


Raouf CHAHBOUNE
ICT Network & Security Engineer
CCNP R/S | CCNA Security | ACMP|ACCP|ACDX



[If my post is helpful please give kudos, or mark as solved if it answers your post.]
New Contributor

Re: How to block Psiphon

If you want to block this application, you will must to block all VPN which are not yours. You may read about Psiphon 3 here or just follow the steps below to unblock the app:--
1. Enable DPI-SSL Client Inspection by going to DPI-SSL | Client SSL and selecting Enable SSL Client Inspection. Ensure that IPS, GAV, Spyware, and Application Firewall are selected.
2. Enable all Psiphon application signatures by going to Firewall | App Control Advanced. Select the category PROXY-ACCESS and application Psiphon. Configure the application to be blocked and logged.
3. Also block Encrypted Key Exchange TCP Random Traffic (SID 5).
4. Enable blocking of SSH app signature (SID 10097) "SSH -- Client Request Outbound", (or make access rule to block outbound TCP/22 SSH Service from LAN->WAN).
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: