Hey everyone, I'm looking for advice. We've had some issues with users in our organization leveraging the SetupVPN browser extension to bypass our firewall rules and policies. Has anyone figured out effective ways to block this from working?
1 Answer
It really depends on the tech your organization has in place. If you're using browsers like Chrome or Edge, you can manage them with Group Policies or Intune to prevent all extensions except the ones you approve. Blocking specific extensions could just lead to more problems, though. If you have a web filtering solution or a next-gen firewall, those might help identify and block the traffic as well. Remember, having a solid conversation about acceptable use policies can reinforce control, but good technical measures are key too.
Right! We're currently working on implementing app filters at the firewall level until we can establish a rule specifically to block VPN connections from that subnet as well as exploring Intune controls for Edge, Chrome, and Firefox.