topic Re: connecting to unauthorized proxy or vpn to bypass security policies on checkpoint? in Firewall and Security Management https://community.checkpoint.com/t5/Firewall-and-Security-Management/connecting-to-unauthorized-proxy-or-vpn-to-bypass-security/m-p/159066#M27811 <P>Filter logs/reports/views as suggested by <a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/7">@PhoneBoy</a>&nbsp;you may also wish to add the "Anonymizer" category&nbsp;</P> Sat, 08 Oct 2022 13:41:09 GMT Chris_Atkinson 2022-10-08T13:41:09Z connecting to unauthorized proxy or vpn to bypass security policies on checkpoint? https://community.checkpoint.com/t5/Firewall-and-Security-Management/connecting-to-unauthorized-proxy-or-vpn-to-bypass-security/m-p/159002#M27789 <P><SPAN>how to determine from checkpoint logs which network user connects to an unauthorized proxy server or vpn to bypass security policies on checkpoint?</SPAN></P> Fri, 07 Oct 2022 14:34:59 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/connecting-to-unauthorized-proxy-or-vpn-to-bypass-security/m-p/159002#M27789 Arturxr 2022-10-07T14:34:59Z Re: connecting to unauthorized proxy or vpn to bypass security policies on checkpoint? https://community.checkpoint.com/t5/Firewall-and-Security-Management/connecting-to-unauthorized-proxy-or-vpn-to-bypass-security/m-p/159018#M27792 <P>It depends on how the end user is connecting and what blades are active.<BR />If you have App Control on for all Internet-facing traffic, there are categories for proxies and VPN you can search on.<BR />You'll see more if HTTPS Inspection is enabled as well.&nbsp;<BR />That assume you've constructed your rulebase correctly.</P> <P>If your outbound access rule includes the service Any, it's highly recommended you restrict that to needed services only to minimize the risk of either connecting to a proxy or VPN.</P> Fri, 07 Oct 2022 16:36:26 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/connecting-to-unauthorized-proxy-or-vpn-to-bypass-security/m-p/159018#M27792 PhoneBoy 2022-10-07T16:36:26Z Re: connecting to unauthorized proxy or vpn to bypass security policies on checkpoint? https://community.checkpoint.com/t5/Firewall-and-Security-Management/connecting-to-unauthorized-proxy-or-vpn-to-bypass-security/m-p/159066#M27811 <P>Filter logs/reports/views as suggested by <a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/7">@PhoneBoy</a>&nbsp;you may also wish to add the "Anonymizer" category&nbsp;</P> Sat, 08 Oct 2022 13:41:09 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/connecting-to-unauthorized-proxy-or-vpn-to-bypass-security/m-p/159066#M27811 Chris_Atkinson 2022-10-08T13:41:09Z