Bypass Firewall

Method 1: external DNS
Test:
-set dns to 4.2.2.1 – 4.2.2.6
-test whether can access http://www.playboy.com

Result:
BlueCoat:
CheckPoint:
Cisco ASA:
Cyberoam:
FortiGate:
Juniper SRX:
PaloAlto:
SonicWall:

Method 2: Opera Turbo
Test:
-open Opera and tick File/Opera Turbo menu
-test whether can access http://www.playboy.com

Result:
BlueCoat:
CheckPoint: PASS
Cisco ASA:
Cyberoam:
FortiGate: No filter for this app
Juniper SRX:
PaloAlto: FAILED
SonicWall:

Method 3: FireFox or Chrome Zenmate Extention
Test:
-open Chrome or FireFox and enable Zenmate extention
-test whether can access http://www.playboy.com

Result:
BlueCoat:
CheckPoint: PASS
Cisco ASA:
Cyberoam:
FortiGate:
Juniper SRX:
PaloAlto:
SonicWall:

Method 4: Block Torrent
Test:
a. utorrent
-download and install utorrent from http://www.utorrent.com
-download and open torrent magnet from kickass.to
-test whether utorrent can download

b. tor browser
-download and install tor browser from https://www.torproject.org/projects/torbrowser.html.en
-launch Tor browser and go to http://www.playboy.com

c. Tor Network
Test:
-launch Tor browser but leave it running
-open Chrome
-open Chrome Settings/Show advanced settings
-click Change proxy settings
-click LAN settings
-click Advanced
Socks: 127.0.0.1 Port 9150
-test whether can access http://www.playboy.com

Result:
BlueCoat:
CheckPoint: PASS
Cisco ASA:
Cyberoam:
FortiGate:
Juniper SRX:
PaloAlto:
SonicWall:

Method 5: Open Proxy
Test:
-search open proxy that using port 80 from http://proxylist.hidemyass.com/
-set Chrome using open proxy for example 107.167.21.243 port 80
-test whether can access http://www.playboy.com

Result:
BlueCoat:
CheckPoint:
Cisco ASA:
Cyberoam:
FortiGate: FAILED
Juniper SRX:
PaloAlto:
SonicWall:

Method 6: Psiphon
Test:
-download and install Psiphon from https://psiphon.ca
-run and choose SSH+
-test whether can access http://www.playboy.com

Result:
BlueCoat:
CheckPoint: PASS
Cisco ASA:
Cyberoam:
FortiGate:
Juniper SRX:
PaloAlto: PASS
https://live.paloaltonetworks.com/t5/Featured-Articles/DotW-Blocking-PSiphon-3/ta-p/69359
SonicWall:

Method 7:  Soft-Ether
Test:
-download, install and run Soft-Ether from http://www.vpngate.net/en/
-connect to VPN Relay Server using UDP
-set dns to 4.2.2.2
-test whether can access http://www.playboy.com

Result:
BlueCoat:
CheckPoint: PASS
Cisco ASA:
Cyberoam: No filter for this app
FortiGate: SUCCESS with custom app signature
Juniper SRX:
PaloAlto:
SonicWall:

Method 8: Block Internet Download Manager
Test:
-download IDM from https://www.internetdownloadmanager.com/

Result:
BlueCoat:
CheckPoint: PASS
Cisco ASA:
Cyberoam:
FortiGate:
Juniper SRX:
PaloAlto:
SonicWall:
Method 9: Block Free Download Manager
Test:
-download and install FDM from http://www.freedownloadmanager.org

Result:
BlueCoat:
CheckPoint: PASS
Cisco ASA:
Cyberoam:
FortiGate:
Juniper SRX:
PaloAlto:
SonicWall:

Method 10: Block Internet Download Accelerator
Test:
-download and install IDA from https://westbyte.com/ida/index.phtml?page=download

Result:
BlueCoat:
CheckPoint:
Cisco ASA:
Cyberoam:
FortiGate:
Juniper SRX:
PaloAlto:
SonicWall:

If anyone success blocking above test, please email me your rule. Because either I don’t the device or I have the device but don’t have the license or my filter is wrong

Submit Missing Application Filter
BlueCoat:
CheckPoint:
Cisco ASA:
Cyberoam:
FortiGate:
Juniper SRX:
PaloAlto:
Sangfor IAM:
SonicWall:
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s