jbreed
commented
12 months ago I was thinking about the same thing; however, looking at some HTTPS VPN services (hard to block) the best method for blocking is hammering their IP addresses into blacklisting. This requires an automated process for keeping these updated as I just blocked the free endpoints of an app my daughter uses and each of those addresses I don't see in this list.
I did some review of this and am looking at possibly contributing with some mechanisms for automating this specifically for HTTPS VPN providers as the normal VPN ports are easy to just block.
Commented on a post here: https://www.reddit.com/r/fortinet/comments/126n74d/how_can_i_block_vpns_once_and_for_all/?sort=new
I would be open to contributing some work on my spare time for a mechanism that can track these with minimal maintenance over time. If it requires constant changes due to these vendors actively working to bypass, would be hard to do this with a small group for open source efforts. I know I would be open to subscribing to known feeds of VPN endpoints that is good and doesn't block other stuff. To properly do this, it would require paying for the subscription to each of these providers and then a system to actively connect, monitor, block, validate, update list, then repeat. Would then have to have a mechanism to auto-remove after a time period as more than likely it will be a cloud provider IP that could get re-issued to another party. If this list was updated quickly and daily, I imagine the cost for the VPN providers actually trying to beat this would increase drastically.
splitice
ebe76
CameronMunroe
Hi, thx for the VPN list. Very usefull for me.