• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2761
  • Last Modified:

Blocking Hotspotshield

My Lan having  Sonicwall Pro 4100. How can I block hotspot shield running from my clients
0
samithsukumar
Asked:
samithsukumar
1 Solution
 
mds-cosCommented:
1)  Find out what port hotspot shild uses.  If it does not use a unique port, you are going to have to identify something else unique about it that you can block.  From a quick google search, it appears that port 895 can be blocked.

2)  Set up a new rule to block that port -- but unlike your other rules apply this rule from the internal (trust) port to the external (untrust) port.  Be sure to position the deny rule BEFORE your default accept any any rule.
0
 
MikeKaneCommented:
Have a look at a previous question I worked on about Hotspot:
http://www.experts-exchange.com/Security/Software_Firewalls/Enterprise_Firewalls/Cisco_PIX_Firewall/Q_24839750.html

This will be tough since hotspot uses a VPN to a remote host whose IPs rotate frequently.      Look at that post and let me know if that helps you out.

0
 
samithsukumarAuthor Commented:
i read those above post

i am looking for the setting on my sonic to Disable IPSEC . so that i can prevent outbound VPN
0
 
btanExec ConsultantCommented:
From this forum, it is shared that blocking Hotspot Shield (used UDP protocol) can be done simply by only allowing outgoing UDP for the ports needed, ie 53 and block the rest. This will prevent Hotspot from connecting to the VPN service. This is the whitelisting approach - allow the legit and known ones

http://forums.whirlpool.net.au/archive/1045253

As for the configuration of sonicwall, can check out this link. I did not manage to find out the actual configuration but thought this link is useful, we just need to create 2 access rules - allowed service to be port 53 and the rest are denied service.

@ http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=5623
@ http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=7606

Actually there is application firewall and control module for latest Gen 5 Sonicwall version but not applicable for your Gen 4 though

@ http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=8533
@ http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=8317
@ http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=8182
0

Featured Post

Take Control of Web Hosting For Your Clients

As a web developer or IT admin, successfully managing multiple client accounts can be challenging. In this webinar we will look at the tools provided by Media Temple and Plesk to make managing your clients’ hosting easier.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now