Summary
NordVPN is a subscription VPN service that allows you to shield your browsing content from third parties. NordVPN is becoming increasingly popular with students and professionals that use public Wi-Fi regularly.
Problem
However, NordVPN prevents Smoothwall's Web Filter from screening content. This means that users can access websites that would otherwise be blocked.
Solution
To block NordVPN on the Smoothwall, you need to set up Firewall and HTTPS inspection rules. NordVPN uses a number of ports listed below:
| TCP | UDP |
| 20 | 53 |
| 21 | 443 |
| 465 | 1194 |
| 587 | 1198 |
| 993 | 1214 |
| 995 | 1215 |
| 1216 | |
| 2231 |
To find out more about how to set up a firewall rule, visit our user assistance topic on Using the Smoothwall Firewall.
NordVPN keeps trying to connect because it uses UDP Port 53. It will continue to do this unless you put Port 53 into the Firewall rule. Remember that the Smoothwall itself can be used as DNS forwarder so there i no need for outgoing DNS being allowed.
Next, create the HTTPS inspection policy (if there are no HTTPS Inspection policies, please contact support):
- From the Guardian menu, under the HTTPS inspection submenu, click Policy Wizard.
- Add in the following attributes:
- Who - Everyone*
- What - Everything
- Where - Everywhere*
- When - Always*
- Action - Decrypt and Inspect/Validate Certificate
*Change as appropriate