This website uses cookies. By browsing this website, you consent to the use of cookies. Learn more.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Highlighted
Oussama_Kadim1
Nickel
‎2018-11-12 02:00 AM

OPENVPN NOT DETECTED BY APPCONTROL

Dear all, 

I tried to implement a rule to block all OpenVPN flows on security Gateway R 77.30, but it is not detected even with SSL inspection activated.

Do you have any idea, is that really working? 

Best regards. 

0 Kudos
4 Replies
Highlighted
_Val_
Admin
Admin
‎2018-11-12 02:06 AM

Make sure you are running the latest Jumbo HFA and have access to Threat Cloud. OpenVPN signature might be changed

0 Kudos
Highlighted
Oussama_Kadim1
Nickel
‎2018-11-12 08:14 AM

Hello,

All is up to date, and the access to the internet is OK, but Gws still not detect Openvpn flows.

Do we need to activate SSL inspection to permit OpenVPN detection?

Regards.

0 Kudos
Highlighted
PhoneBoy
Admin
Admin
‎2018-11-12 09:53 AM

Not as far as I know.

I would open a TAC case so we can gather the necessary debugging.

Also tagging Mor Himi‌ in case they've seen this.

0 Kudos
Highlighted
Mor_Himi
Employee+
Employee+
‎2018-11-12 11:16 AM

Hi,

In general SSL inspection is not required for OpenVPN detection.

I suggest you grab a packet capture and open a support ticket with TAC.

You can ask them to contact the application research team once you have a clear use case, RB screenshots and packet captures.

0 Kudos