SmoothWall | Solutions » Blocking Ultrasurf and HTTPS proxies

» Company Information » Case Studies & Testimonials » Press, Reviews & PR » Key Staff Biographies » News Archive » Events » Jobs

» Cyberbullying Best Practice » Secure Wireless » Anonymous Proxies » Load Balancing » Blocking Ultrasurf and HTTPS proxies » Virtualized Web Filtering » Guide to Safe Social Networking » ROI Calculator

- Unified Threat Management - » UTM-1000 Series Appliance » UTM-300 Series Appliance » UTM-100 Series Appliance - Web Content Filtering - » Guardian SWG-1200 Series Appliance » Guardian SWG-700 Series Appliance - Full Product List -

- Web Content Filtering - » Network Guardian » School Guardian » Mobile Guardian - Firewall & VPN - » Advanced Firewall » Corporate Firewall - Email Security - - Bandwidth Management - - Full Product List -

» Find a Partner » Become a Partner » PartnerNet this is a link to external content

» Support from SmoothWall » Submit a Support Ticket this is a link to external content

» FAQ & Knowledge Base » Hardware Compatibility this is a link to external content

» Manuals » Supported Products » Blocklist Addition/Removal this is a link to external content

» Password Generator

» Ask a Question » Request Web Demo » Evaluate

Company - Here you can read about SmoothWall the company, customer case studies, PR, staff bios, news, events and careers opportunities »

Solutions -
Contains information on applying our products to solve real world problems »

Software - Contains information on all of our software products »

Hardware - Contains information on our hardware appliance family »

Partners - Here you can locate your nearest SmoothWall partner, read about how to become a partner or, if you are a partner, access selling tools, products for download and services »

Support - Here you can submit a support request, read FAQs and answers, download the latest documentation, find out which products are supported, submit web and IP address to our blocklist management system and generate high strength passwords »

Contact Us - Contains information on how to get in touch with our offices; enables you to ask our sales team a question, request a web demo or product evaluation; lists our PR contacts; and submit a support request »

home » solutions »

Blocking Ultrasurf and HTTPS proxies

It only takes one proxy to put a gaping hole in your network security. Using a web filtering solution that doesn't block proxies is the equivalent of putting a big bolt on your front door but leaving the back door wide open.

There are now millions of proxy anonymizers in existence with miscreants developing new types faster than security vendors can detect and block them. Fortunately, thanks to our development team's commitment to ensure that detection signatures are constantly kept up to date, Guardian has an excellent proxy-blocking record. V2008 Guardian Filters utilize multiple proxy-blocking defenses including SSL [interception and] certificate checking to accurately detect and block secure proxies.

In the last 18 months, the number of types of proxy we detect has quadrupled and this figure will continue to grow as new proxy technologies and variants of existing proxies evolve.

Proxy tools and applications that use HTTPS can be particularly difficult to detect and block because they allow web sites and media files to be viewed secretly within a secure tunnel where content is encrypted.

They also present a much more serious security problem since the secure tunnels they use allow malware and other web-related threats to sneak into networks undetected.

Examples of such 'secure' proxies include Ultrasurf, TOR and VTunnel. These proxy types cannot be blocked using domain or URL blacklists and so the fix that most security vendors recommend is a (far from practical) blanket block on all HTTPS traffic. V2008 Guardian Filters utilize multiple proxy-blocking defenses including SSL/HTTPS Filtering to accurately detect and block secure proxies.

For users of earlier software versions, we recommend creating a whitelist of authorized HTTPS sites and blocking access to the category 'proxies' in Guardian. Disabling direct web access and transparent proxying should also help to avoid proxy abuse.

For more information, please visit the SmoothWall KnowledgeBase.

Home	Web Filter \| UTM Appliance \| Firewall \| K12 & Schools \| Web Filtering Appliance