Skip to main content

Tue, Nov 13, 2018 8:28 PM

Answered

port blocking

K-8 school here trying to block students using VPNs: could be apps or websites, on either Chromebooks or phones.  Our content filter, iBoss, is not good in this area, only offering to block five ports.  I want to block lots more, hoping to catch not all but the majority of ports commonly used by VPNs.  I think ZD can do this in configure>access control.  But which section? L2? L3/4?  "Application Denial Policy"?  See two attached screenshots.

Responses

13 Messages

 • 

234 Points

2 years ago

VPNs work at the Layer 2 level. 

2 Messages

 • 

80 Points

Alas, no provision to deal with ports in L2 section.  Plus specifying MAC addresses won't be do-able.

337 Messages

 • 

5.5K Points

Network protocol 115 will give you L2TP access control deny/allow possibilities. So use that in protocol number. Other comments in recent email.