About cloughr

Very helpful! Thanks! I will try tomorrow and Accept as Solution after. ... View more

Decryption is the ultimate solution, but there are other things you can do. For Windows domain-joined, use the Google schema add-on, you can whitelist approved extensions in Chrome and IE which will knock down a good chunk of offenders. The rest will go to Firefox, or chromium, or Brave, or WebDiscovery Browser, or..., in which case you'll need a group policy and/or a way to block those executables. I see Firefox with Zenmate used mostly.  Students will rdp to their home networks, or even a hosted server, so see if you are allowing rdp externally. For other devices, it depends if you manage them with a central tool designed for client management. If you do, there should be similar ways to do the above. For BYOD you can run a report on the firewall for vpn/anonymous proxy hits and using a script mass-block the devices in your wifi controller. This can get the word out that IT means business. I'd also suggust adding to your 'anonymous' tips form (like schoolmessenger) the subject, 'network use violation' or similar. That, along with some face time in front of students to address their responsibility as digital citizens of your network can cut down on vpn activity. The fact is, kids don't think they're doing anything bad (wrong, yes), once they're confronted with the seriousness of violating this policy most will get it. I could go on... ... View more

We are at 6.0.6, down from 6.1 after a data plane failure caused us downtime, even though we use HA. There is a case being worked, and supposedly a fix is in the works. ... View more

We use PA-5020s, and I couldn't wait to update to 6, to take advantage of the safe-search filtering. Unfortunately, when we upgraded it broke our user-id system, specifically the group mappings. 90% of all filtering went out of the 'default" policy. We are a large school system and rely on our group filtering. I reverted back to 5.0.9 and have a case open. ... View more

ksuuk- That fixed it for us, thanks!!! ... View more

I installed update 397, re-added ultrasurf, and it's still blocking google traffic for us. I will back-rev to 395 until resolved... ... View more

We had severe issues with ALL google apps as a result of this change. Google traffic was being blocked as ultrasurf app traffic. PAN please post something when this has been resolved. ... View more

l We have installed the code, and initially we still were seeing some sites stilmisrepresented as unknown. Today, it appears the sites are identified correctly, matching Brightcloud/Webroot. Once this is verified i'll reinstate policies.. ... View more

I contacted support at the time of posting my original message. The rep spent an hour looking at logs, re-running the commands recommended here, and left me with, "I will research and get back to you". I received one email since, asking for the version of the content release, even though we covered that during the hour session (it's up to date). Bottom line- I have two problems that are not resolved, #1- sites show as 'unknown' even though brightcloud correctly categorizes them; #2- sites show as 'not-resolved' even though brightcloud correctly categorizes them. Prior to last week, this wasn't a problem. I have had to make my environment less secure by allowing these categories. If possible, I would like to escalate case #00126530. I do not have time to waste on someone poking around our firewall making guesses.. ... View more

In addition to the aforementioned problem, we are also seeing a high number of 'not-resolved' sites. Please respond.. ... View more

This is still an issue with us. I verified and entered all commands given by Doris previously. Now not all sites are showing 'unknown'. but sites that I can verify are categorized correctly in Brightcloud are still showing as unknown.  We are running 5.0.2 and are on 364 of the content release. ... View more