VPN detection

Hello mykola.

 

Yes. When you set up a vpn (full or split vpn) you have the availability to force all user to pass through your proxy and it's very simple to do it.

 

You can set transparently proxy or proxy pac to users.

 

https://devcentral.f5.com/questions/vpn-and-proxy-setting

 

Let me know if you need details .

 

Regards

 

The IP Intelligence subscription can help you to block these types of connections. (source P Intelligence Service Datasheet)

 

The IP Intelligence service identifies and blocks IP addresses associated with a variety of threat sources, including:

 

Windows exploits: Includes active IP addresses offering or distributing malware, shell code, rootkits, worms, or viruses.

 

Web attacks: Includes cross-site scripting, iFrame injection, SQL injection, cross domain injection, or domain password brute force.

 

Botnets: Includes botnet command and control channels and infected zombie machines controlled by the bot master.

 

Scanners: Includes all reconnaissance, such as probes, host scan, domain scan, and password brute force.

 

Denial of service: Includes DoS, DDoS, anomalous SYN flood, and anomalous traffic detection.

 

Reputation: When enabled, denies access to IP addresses currently known to be infected with malware or to contact malware distribution points.

 

Phishing: Includes IP addresses hosting phishing sites or other kinds of fraud activities, such as click fraud or gaming fraud.

 

Proxy: Includes IP addresses providing proxy and anonymization services, as well as The Onion Router (TOR) anonymizer addresses.