MUST block Hamachi

I did try that and it does work. The thing I am worried about is having to watch it like you suggested. I am worried that they will change their IP, add another server, or something similar and I wont know. The traffic goes out on a 5.x.x.x IP which is reserved and exclusive to Hamachi (if I am not mistaken) and maybe blocking traffic on that subnet would be better? That was what I wanted to try next but it didn't work. I am a little confused how Hamachi works as it makes a new network adapter (logically). I am unsure if but it looks like my firewall isn't seeing the traffic as 5.x.x.x rather a local IP on the subnet. Is that right?

I am not sure about the 5.x.x.x subnet; as this is outbound traffic and Hamachi is designed to go on port 443 if the other regular ports are blocked there is no other concrete way to stop the traffic.
Also, as the filtering is not based on specific port but outbound IP, you would need to watch for the IP address changes.
Wg can resolve DNS but again it only stores the IP address obtained by name resolution and does not do namelookup always when a packet goes out. So, we are back to the ONLY solution.

Let me know if you need more details.

Thank you.

I figured it was going to be some sort of solution like this. I don't like it, but I don't have a choice. I feel like this is a crazy piece of software. Anything that works this well or is this hard to keep from going out could be potentially dangerous.

/Sigh
/Sit
/Shakehead

Thanks for your help dpk_wal.

Hamachi can a proxy to connect, so you must also block all the public proxies on the internet!

^^ not really, as if this is a work location, people could just have permissions assigned to not allow the changing of their computers settings.