Blocking Anonymous Proxies


This article applies to:

  • WebMarshal 6.5 and above

Question:

  • How can I block anonymous proxy sites?
  • How can I block Glype proxy sites?
  • How can I block PHP proxy sites?

Reply:

In WebMarshal 6.5 and above, the TRACEnet service blocks anonymous proxy sites by default. This service includes a number of technologies designed to detect new sites on the fly or with "zero-day" updates. Trustwave is constantly refining detection strategies for these sites.

For previous versions of WebMarshal, or in addition to TRACEnet, you can use the anonymous proxy categories found in the Trustwave Web Filter Database (URL Filtering List).

You can also use the default "anonymizers" TextCensor script to detect sites related to anonymous proxies. For TextCensor to be effective in this case, you should consider enabling HTTPS content inspection.

Note:

If you want to maintain a local listing of known anonymizers, about 4000 sites are included by default in the FileFilter category Anonymizers & Remote Access. You can add sites to this category.

  • However, this option is not recommended as a general solution because it is a purely reactive strategy and it is not possible to keep a manual listing up to date.

Last Modified 6/28/2016.
https://support.trustwave.com/kb/KnowledgebaseArticle12189.aspx