Hi everybody,
I need to prevent user from my network to tunnel their connection throught authorized port (80, 443).
It's quite annoying because I need to authorize https and http globally (not only on specific site).
I have an Iptables router, and a squid proxy and i have tried everythnig i know (transparent proxying, proxying),
But nothing work. It seems to me that only one port is enough to tunnel everything and so bypass entreprise security.
Is there any way to prevent SSH tunnel globally ?