Zenarmor and VPN detection

Started by deuch, August 11, 2023, 12:38:23 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 11, 2023, 12:38:23 PM Last Edit: August 11, 2023, 04:54:23 PM by deuch
Hello,

I'm trying using zenarmor to detect VPN connection from a kids network but it seems that zenarmor has a difficult time to achieve it.

I've blocked all the Proxy gategory (Security and App Controls) but with my results :

Hide.me application bypass zenarmor (hide.me is in the list of the proxy)
1.1.1.1 application with WARP from cloudflare bypass zenarmor

I've a wireguard server and tested it :

   192.168.2.14   -   50307   1X.X.2XX.X   60beb40d093e   109.0.230.182   -   55820   Generic TCPIP   Generic TCPIP   Generic TCPIP

It is seen as Generic TCPIP traffic and not wireguard or VPN traffic and it bypass zenarmor too.

Does someone achieve to block VPN with zenarmor ?
August 11, 2023, 04:52:58 PM #1
I've made a simple test :

Deploy a Wireguard VPN server on a cloud VM.

If i use the 51820 default Wireguard server port, zenarmor block the connection from my device
If i use the 52820 port for Wireguard, zenarmor consider it a Generic TCP and not Wireguard VPN

So what is the point to do DPI if a simple port change can fool zenarmor ?
Print
Go Up Pages1
User actions