Blocking capabilities of circumventing proxies and firewalls via VPN, pptp and l2pt clientware and services
Hello There: An Academy my niece goes to using a proxy in order to block content that the highschool or academy does not want them going to do to school polocies. Anyway some of the students have found ways to circumvent this via using anchorfree hotspot shield.
I would like to help the IT person for this institution implement a way to mitigate the circumventing of the proxy server. I have researched a bunch of sites and found there were tons of such vpn and proxy services that help people get around firewalls.
One thing I have discovered is these services basically fall into 3 major categories openvpn, pptp and l2pt. I am wondering one of two things:
1. Is their a way to block many of these client applications or websites that provide services to circumvent proxies by targeting anything that bases its augrithym off openvpn pptp or l2pt. I know there are some software out their like anti ultrasurf as well as fortiguard but I am trying to get an idea of the best system that can be used to monitor and block these services and sites that client software uses to bust open a network firewall or proxy service.
I know a big service being used today is your freedom which is a proxy service that claims the ability to bust open any firewall being used by school or company.
2. If there is no good method of literally fireproofing the firewall if you will what software or services can be used at a academy or highschool situation to be able to pick up traces of those who are violating the schools internet policy by using their own laptops and or client pcs in the school network to get onto forbidden sites via vpns like hotspot shield or ultra surf, your freedom among others who make use of tunneling and anonymizing the user so they are virtually untraceable and very invisible through this software especially if it is on their laptop and not downloaded onto one of the schools pcs.
Bottom line is, if there is no real good method in really fireproofing the firewall and making it hard to get through with the majority of free VPN out there what management system or software is available so at least the IT person of the school can get an idea when a student uses a proxy service or vpn to circumvent the school's filtering service and perhaps be able to tell what VPN was used to do so (i.e. hotspot shield, gpass, expatshield, Proxpn, yourfreedom, etc...)
I know this sounds like a complex question but any help would be appreciated as this has become a real problem in the school with students spending much time on facebook instead of what they should be doing during school hours and or study hall times in their dorm rooms.