Unfortunately, this is currently not possible and there are no plans to implement this. I would advise for you to create a suggestion on our Sophos Ideas page for visibility to our team.
VPN is pretty much the only way if they don’t have VPNs blocked as well.
Nord, Private Internet Access, ExpressVPN, etc.
However, if you are caught using it to bypass services to violate their TOS, count on some level of negative action. They’ll still notice a spike in bandwidth usage.
I am able to block Hotspot shield by blocking and enabling the "Facebook Website" in the application filter. For some reason, the application filter is detecting Hotspot Shield as "Facebook Website".
I was able to block "Psiphon proxy" on android by blocking "", IP Address category, and enabling the Psiphon Proxy in the application filter.
Other VPNs are getting blocked except the "Betternet VPN". Betternet VPN is able to connect using the 443 port.
I bought this from Amazon. You can get it bare bones, or with RAM and SSD. Works great so far, other than the UI being a tad slow.
You won't hear anything here that you haven't heard before, according to my Google searches:
The next step then is deciding between our Central or On-prem option for managing your endpoints. For further information, please have a read: https://www.sophos.com/en-us/products/endpoint-antivirus.aspx You will then be able to sign up for free trials. Thanks. ^kc
Try this regex:
^https?:\/\/([a-zA-Z0-9.-]+\.)?schooljotter2\.com($|\/)^https?:\/\/([a-zA-Z0-9.-]+\.)?schooljotter2\.com($|\/)
​
Also, I like to use https://regexr.com/ to test my regexes.
​
Good luck!
Did it only show up with your NordVPN connection on? Im guessing it may have accidently filtered a site on NordVPN. They probably use Sophos web filtering on their services. Otherwise you have a Sophos firewall somewhere.
Apologies for the error, that setting refers to "Block unrecognized SSL protocols in Web > General Setting > HTTPS decryption and scanning." The KBA has been updated accordingly.
Regarding NordVPN, you are correct it's currently unlisted for the XG's application list. However, implementing an application filter policy as per the KB's below, should also block it.
Sophos XG Firewall: How to block UltraVPN
Sophos XG Firewall: How to block unauthorized internet access proxies
The option like you mentioned is enforcing this through SAC or through Endpoint Application Control.
Did you end up having any luck on this one? I did go to pfsense and used it for a while. Finally solved my other shoe stopping issue with Sophos, so I'm back with 100% running on Sophos how I want, expert PureVPN.
To be fair, I haven't gone far yet, I was just hoping there might have been an easy guide to map what Sophos calls certain parameters and what PureVPn call them. PureVPN have some tutorials for OpenVPN as an application level/conf files, but not a static list of parameters used for filling in a web form.
This is what I use for my home UTM. Runs great for my 40/5 internet connection. NOTE: this computer doesn't come with a memory or storage once I added in 4GB of memory and a 60GB MSATA SSD it was about $270 total. Edit: fixed the link and added the Note.