ultrasoft and Ebox

[ps2ali]

hi everybody;

i m now install ebox and i tested and its works fine ,actualy i want to block one software like ultrasurf , i hope someone give me help  

thanks

[Marcus]

Block outbound port #9666 and that should do the trick

[ps2ali]

ultrasurf had a random ports ,i tried with 9666 but no way , whats the solution ,this is a big issue because how this firewall can will be effectual ?

[Squeaner]

UltraSurf uses https to create the initial connection.  You would need to disable all outbound https traffic and manually use the proxy setting for https in the browser in order to get around that issue.  I had to do this not with Ebox, but another system used at a school district.

Hope this helps.

[ps2ali]

if i do that the  email in my company  doesn't work because its https ,i tried but no way

[whoiam55]

Hi there, I'm rather new to eBox so I don't know much about it, but for ultrasurf, if I were on a windows domain, I would block ultrasurf application using software restriction policies with application hash rule. I don't know if same can be cooked up with eBox domain.

Other way is to block SSL (Port 443) it may be easier to deny all https sites (using squid) and set up a https Allowed list. The number of https sites users are likely to want to access would be very minimal and your HTTPS Allowed list would not be too difficult to maintain.