algo icon indicating copy to clipboard operation
algo copied to clipboard
verified publisher icon trailofbits

Fortiguard identifies and blocks Wireguard

Open TarekSalama opened this issue 6 years ago • 2 comments

So I was lucky enough to be able to test Wireguard with Fortiguard installed on the network. Fortiguard was able to completely disable Wireguard.

I did notice however that it sometimes identified it as a proxy (Wireguard) and sometimes it identified it as an AWS app (where I host it). I did notice also that it sometimes worked and sometimes it worked only after reconnecting to the network. I couldn't find an exact pattern.

Is there a way to completely hide it from getting identified by Fortiguard? Any idea why it was sometimes identified as a proxy/AWS app?

TarekSalama avatar Sep 16 '19 22:09 TarekSalama

What if you change the Wireguard port to 1194 (Open VPN) or 443 (https)? Or something completely random?

TC1977 avatar Sep 30 '19 15:09 TC1977

I am not really experienced with networking but is it possible to change it using Algo? I know I can probably change it in the server script configuration file but would I need to change anything in the device config files that get auto generated?

TarekSalama avatar Sep 30 '19 15:09 TarekSalama