Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Request to use your vpn file as a Ip blocking list #54

Open
ebe76 opened this issue Sep 24, 2023 · 5 comments
Open

Request to use your vpn file as a Ip blocking list #54

ebe76 opened this issue Sep 24, 2023 · 5 comments

Comments

@ebe76
Copy link

ebe76 commented Sep 24, 2023
edited

Hi, thx for the VPN list. Very usefull for me.
@jbreed
Copy link

jbreed commented Sep 26, 2023
edited

I was thinking about the same thing; however, looking at some HTTPS VPN services (hard to block) the best method for blocking is hammering their IP addresses into blacklisting. This requires an automated process for keeping these updated as I just blocked the free endpoints of an app my daughter uses and each of those addresses I don't see in this list.

I did some review of this and am looking at possibly contributing with some mechanisms for automating this specifically for HTTPS VPN providers as the normal VPN ports are easy to just block.

Commented on a post here:
https://www.reddit.com/r/fortinet/comments/126n74d/how_can_i_block_vpns_once_and_for_all/?sort=new

I would be open to contributing some work on my spare time for a mechanism that can track these with minimal maintenance over time. If it requires constant changes due to these vendors actively working to bypass, would be hard to do this with a small group for open source efforts. I know I would be open to subscribing to known feeds of VPN endpoints that is good and doesn't block other stuff. To properly do this, it would require paying for the subscription to each of these providers and then a system to actively connect, monitor, block, validate, update list, then repeat. Would then have to have a mechanism to auto-remove after a time period as more than likely it will be a cloud provider IP that could get re-issued to another party. If this list was updated quickly and daily, I imagine the cost for the VPN providers actually trying to beat this would increase drastically.

@splitice
Copy link
Member

splitice commented Oct 2, 2023

In my experience the best way to block all vpns is very situational dependent. Basically it comes down to your willingness to also block server networks.

If you arent willing to do that you will probably get 10% at most. That's why the datacenters list exists.

@ebe76
Copy link
Author

ebe76 commented Oct 7, 2023
edited

i wrote a little windows command script to add this file like it is now to windows defender firewall blocking rules, better solution.

@CameronMunroe
Copy link
Contributor

i wrote a little windows command script to add this file like it is now to windows defender firewall blocking rules, better solution.

I am not sure that is 100% suggestible.

You likely will be blocking lots of good services beyond just VPNs.

@ebe76
Copy link
Author

ebe76 commented Oct 8, 2023

VPN Ips are blocked for a specific application from incoming traffic.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@splitice @jbreed @CameronMunroe @ebe76