Re: [AFMUG] Blocking Tech Savvy person from Porn

[Mike Hammett]

That's. awesome.. 




- 
Mike Hammett 
Intelligent Computing Solutions 
http://www.ics-il.com 

- Original Message -

From: "Chris Wright" <ch...@velociter.net> 
To: af@afmug.com 
Sent: Thursday, January 7, 2016 2:23:27 PM 
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn 



Good luck. 


Chris Wright 
Network Administrator 
Velociter Wireless 
209-838-1221 x115 



From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke 
Sent: Monday, January 04, 2016 7:56 AM 
To: af@afmug.com 
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn 

That was my thought, there's always a way around. Where there's a will, there's 
a way. 

On 1/4/2016 9:50 AM, Josh Reynolds wrote: 


He can probably shift quite a few ports/methods around, or create vpns he 
controls to amazon., etc. Or Tor. Etc etc for every solution you come up with, 
there's a way around it. 
Also, this is a social/hr "issue". Treat it as such. 

On Jan 4, 2016 9:45 AM, "Josh Luthman" < j...@imaginenetworksllc.com > wrote: 
VPN hides the traffic, so anything in it is getting through. Could you do 1kbps 
for all VPN traffic? 
Block porn with opendns and drop DNS to anything else? 
Josh Luthman 
Office: 937-552-2340 
Direct: 937-552-2343 
1100 Wayne St 
Suite 1337 
Troy, OH 45373 

On Jan 4, 2016 10:42 AM, "Nate Burke" < n...@blastcomm.com > wrote: 
We're dealing with a customer who is trying to block porn from their house. The 
person who has the 'problem' is tech savvy, and is using VPN Services. Is there 
any way to block someone like this? I'm guessing any content filtering wouldn't 
work because the VPN is terminating on the computer behind the router. Any sort 
of IP or DNS Block they would be able to bypass. Is there any way to stop a 
tech person from getting what they want? Right now our only thought is to put 
in like a 10k/s queue on their connection during the overnight hours. Other 
options? 

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Glen Waldrop]

Works for me.



-Original Message- 
From: Tim Reichhart

Sent: Thursday, January 07, 2016 1:35 PM
To: af@afmug.com
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn


Rory
that page is 404 :(

-Original Message- 

From: "Rory McCann" <rmm.li...@gmail.com>
To: af@afmug.com
Date: 01/07/16 10:12 AM
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn

Doesn't have to run on their computer
(https://support.opendns.com/entries/69688114-Mikrotik-WinBox-Dynamic-Update-Script).

You'll want to make sure you have some rules in place to prevent them
from simply inputting alternate DNS servers (ie dst-nat all port 53 to
OpenDNS). OpenDNS only works when you're actually routing queries TO them.

Rory McCann
MKAP Technology Solutions
Web: www.mkap.net

On 1/5/2016 9:50 PM, Tim Reichhart wrote:
> Philip I know what program your talking about and it only takes one 
> smart kid to remove it.

>
>
>
> -Original Message-----
> Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn
> From: "Philip Rankin" <wireless...@gmail.com>
> To: af <af@afmug.com>
> Date: 01/06/16 04:33:16am
>
> Not really.  There is a little program that open dns supplies that keeps 
> the network info current with them.  It all works very well.
> On Tue, Jan 5, 2016 at 9:05 PM, Tim Reichhart 
> <timreichh...@hometowncable.net> wrote:

> Philip that requires an static IP for one customer fyi.
>
> Tim
>
> -Original Message-
> From: "Philip Rankin" <wireless...@gmail.com>
> To: af <af@afmug.com>
> Date: 01/05/16 10:03 PM
> Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn
>
> I have used open dns pretty successfully.
>   On Tue, Jan 5, 2016 at 8:48 PM, Josh Luthman 
> <j...@imaginenetworksllc.com> wrote:

> Upsidedownternet :)Josh Luthman
> Office: 937-552-2340937-552-2340
> Direct: 937-552-2343937-552-2343
> 1100 Wayne St
> Suite 1337
> Troy, OH 45373 On Jan 5, 2016 9:40 PM, "Eric Kuhnke" 
> <eric.kuh...@gmail.com> wrote:Google 'obfsproxy' , it can be used with a 
> self hosted tor relay or openvpn. Make all your net traffic look like 
> http (not HTTPS) cat jpegs. On Jan 5, 2016 5:30 PM, "Josh Reynolds" 
> <j...@kyneticwifi.com> wrote:Yup. If you really want to get around VPN 
> blockers, proxies, and things like ssh tunnels... It's really hard when 
> the person you want to block controls both ends of the tunnel. On Jan 4, 
> 2016 3:00 PM, "Eric Kuhnke" <eric.kuh...@gmail.com> wrote:It takes some 
> fairly deep packet inspection to 'block' an openvpn server running in 
> TCP mode (not the default UDP) on port 443. I have an openvpn instance 
> for just this purpose, in case I get stuck somewhere like a wifi captive 
> portal in an airport lounge behind an overly restrictive firewall.

>
>   On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson <li...@mtin.net> wrote:
> 
> http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html

>
>
> Justin wilsonj...@mtin.net
> ---
> http://www.mtin.net Owner/CEOxISP Solutions- Consulting - Data Centers - 
> Bandwidth

>
>http://www.midwest-ix.com COO/Chairman
> On Jan 4, 2016, at 3:48 PM, Eric Kuhnke <eric.kuh...@gmail.com> wrote:
>   As an ISP why are you wasting your time 'blocking' anything other than 
> standard ACLs like port 139/windows file sharing? It's not your duty or 
> responsibility. If people want to implement their own firewall at their 
> self-owned router/CPE, let them, or if they want to buy some net nanny 
> software for their end point device, that's their responsibility.

>
> An ISP is a pipe.
>
>   On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke <n...@blastcomm.com> wrote:
> We're dealing with a customer who is trying to block porn from their 
> house. The person who has the 'problem' is tech savvy, and is using VPN 
> Services. Is there any way to block someone like this? I'm guessing any 
> content filtering wouldn't work because the VPN is terminating on the 
> computer behind the router. Any sort of IP or DNS Block they would be 
> able to bypass. Is there any way to stop a tech person from getting what 
> they want? Right now our only thought is to put in like a 10k/s queue on 
> their connection during the overnight hours. Other options?

>
>
>
>
>
> --
>   Philip J. RankinWireless Telecommunications Services
> PO Box 24
> Pittsburg, KS 66762CallSend SMSCall from mobileAdd to SkypeYou'll 
> need Skype CreditFree via Skype

>
> --
> Philip J. RankinWireless Telecommunications Services
> PO Box 24
> Pittsburg, KS  66762
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Trey Scarborough]

On 1/4/2016 9:42 AM, Nate Burke wrote:

We're dealing with a customer who is trying to block porn from their
house.  The person who has the 'problem' is tech savvy, and is using VPN
Services.  Is there any way to block someone like this?  I'm guessing
any content filtering wouldn't work because the VPN is terminating on
the computer behind the router.  Any sort of IP or DNS Block they would
be able to bypass.  Is there any way to stop a tech person from getting
what they want?  Right now our only thought is to put in like a 10k/s
queue on their connection during the overnight hours.  Other options?





I would tell them to have a good discussion with their Son

Beyond that it will prove to be very difficult without blocking all vpn 
traffic as well. Basically just allow port 80 through from the offenders 
computer and put it through a content filter. If they are smart they 
will even find a way around Net Nanny or some similar application 
installed on the computer/device.

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Jay Weekley]

A place I have a part time job at used Open DNS to filter websites. I 
just changed the computer I wanted to bypass to 4.2.2.1 and went where I 
wanted and changed it back when I was done. No porn of course.


Tim Reichhart wrote:

Philip I know what program your talking about and it only takes one smart kid 
to remove it.
and


-Original Message-
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn
From: "Philip Rankin" <wireless...@gmail.com>
To: af <af@afmug.com>
Date: 01/06/16 04:33:16am

Not really.  There is a little program that open dns supplies that keeps the 
network info current with them.  It all works very well.
On Tue, Jan 5, 2016 at 9:05 PM, Tim Reichhart <timreichh...@hometowncable.net> 
wrote:
Philip that requires an static IP for one customer fyi.

Tim

-Original Message-
From: "Philip Rankin" <wireless...@gmail.com>
To: af <af@afmug.com>
Date: 01/05/16 10:03 PM
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn

I have used open dns pretty successfully.
  On Tue, Jan 5, 2016 at 8:48 PM, Josh Luthman <j...@imaginenetworksllc.com> 
wrote:
Upsidedownternet :)Josh Luthman
Office: 937-552-2340937-552-2340
Direct: 937-552-2343937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373 On Jan 5, 2016 9:40 PM, "Eric Kuhnke" <eric.kuh...@gmail.com> wrote:Google 'obfsproxy' , it can 
be used with a self hosted tor relay or openvpn. Make all your net traffic look like http (not HTTPS) cat jpegs. On Jan 5, 2016 
5:30 PM, "Josh Reynolds" <j...@kyneticwifi.com> wrote:Yup. If you really want to get around VPN blockers, 
proxies, and things like ssh tunnels... It's really hard when the person you want to block controls both ends of the tunnel. On 
Jan 4, 2016 3:00 PM, "Eric Kuhnke" <eric.kuh...@gmail.com> wrote:It takes some fairly deep packet inspection to 
'block' an openvpn server running in TCP mode (not the default UDP) on port 443. I have an openvpn instance for just this 
purpose, in case I get stuck somewhere like a wifi captive portal in an airport lounge behind an overly restrictive firewall.
   
  On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson <li...@mtin.net> wrote:

  
http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html


Justin wilsonj...@mtin.net
---
http://www.mtin.net Owner/CEOxISP Solutions- Consulting - Data Centers - 
Bandwidth

   http://www.midwest-ix.com COO/Chairman
On Jan 4, 2016, at 3:48 PM, Eric Kuhnke <eric.kuh...@gmail.com> wrote:
  As an ISP why are you wasting your time 'blocking' anything other than 
standard ACLs like port 139/windows file sharing? It's not your duty or 
responsibility. If people want to implement their own firewall at their 
self-owned router/CPE, let them, or if they want to buy some net nanny software 
for their end point device, that's their responsibility.

An ISP is a pipe.
   
  On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke <n...@blastcomm.com> wrote:

We're dealing with a customer who is trying to block porn from their house. The 
person who has the 'problem' is tech savvy, and is using VPN Services. Is there 
any way to block someone like this? I'm guessing any content filtering wouldn't 
work because the VPN is terminating on the computer behind the router. Any sort 
of IP or DNS Block they would be able to bypass. Is there any way to stop a 
tech person from getting what they want? Right now our only thought is to put 
in like a 10k/s queue on their connection during the overnight hours. Other 
options?
  
   
   
  


--
  Philip J. RankinWireless Telecommunications Services
PO Box 24
Pittsburg, KS 66762CallSend SMSCall from mobileAdd to SkypeYou'll need 
Skype CreditFree via Skype

--
Philip J. RankinWireless Telecommunications Services
PO Box 24
Pittsburg, KS  66762

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Philip Rankin]

I have used open dns pretty successfully.

On Tue, Jan 5, 2016 at 8:48 PM, Josh Luthman 
wrote:

> Upsidedownternet :)
>
> Josh Luthman
> Office: 937-552-2340
> Direct: 937-552-2343
> 1100 Wayne St
> Suite 1337
> Troy, OH 45373
> On Jan 5, 2016 9:40 PM, "Eric Kuhnke"  wrote:
>
>> Google 'obfsproxy' , it can be used with a self hosted tor relay or
>> openvpn. Make all your net traffic look like http (not HTTPS) cat jpegs.
>> On Jan 5, 2016 5:30 PM, "Josh Reynolds"  wrote:
>>
>>> Yup. If you really want to get around VPN blockers, proxies, and things
>>> like ssh tunnels... It's really hard when the person you want to block
>>> controls both ends of the tunnel.
>>> On Jan 4, 2016 3:00 PM, "Eric Kuhnke"  wrote:
>>>
 It takes some fairly deep packet inspection to 'block' an openvpn
 server running in TCP mode (not the default UDP) on port 443. I have an
 openvpn instance for just this purpose, in case I get stuck somewhere like
 a wifi captive portal in an airport lounge behind an overly restrictive
 firewall.

 On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson  wrote:

>
> http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html
>
>
>
> Justin Wilson
> j...@mtin.net
>
> ---
> http://www.mtin.net Owner/CEO
> xISP Solutions- Consulting – Data Centers - Bandwidth
>
> http://www.midwest-ix.com  COO/Chairman
>
> On Jan 4, 2016, at 3:48 PM, Eric Kuhnke  wrote:
>
> As an ISP why are you wasting your time 'blocking' anything other than
> standard ACLs like port 139/windows file sharing?  It's not your duty or
> responsibility. If people want to implement their own firewall at their
> self-owned router/CPE, let them, or if they want to buy some net nanny
> software for their end point device, that's their responsibility.
>
> An ISP is a* pipe*.
>
> On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke  wrote:
>
>> We're dealing with a customer who is trying to block porn from their
>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>> Services.  Is there any way to block someone like this?  I'm guessing any
>> content filtering wouldn't work because the VPN is terminating on the
>> computer behind the router.  Any sort of IP or DNS Block they would be 
>> able
>> to bypass.  Is there any way to stop a tech person from getting what they
>> want?  Right now our only thought is to put in like a 10k/s queue on 
>> their
>> connection during the overnight hours.  Other options?
>>
>
>
>



-- 
Philip J. Rankin
Wireless Telecommunications Services
PO Box 24
Pittsburg, KS  66762

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Luthman]

Upsidedownternet :)

Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Jan 5, 2016 9:40 PM, "Eric Kuhnke"  wrote:

> Google 'obfsproxy' , it can be used with a self hosted tor relay or
> openvpn. Make all your net traffic look like http (not HTTPS) cat jpegs.
> On Jan 5, 2016 5:30 PM, "Josh Reynolds"  wrote:
>
>> Yup. If you really want to get around VPN blockers, proxies, and things
>> like ssh tunnels... It's really hard when the person you want to block
>> controls both ends of the tunnel.
>> On Jan 4, 2016 3:00 PM, "Eric Kuhnke"  wrote:
>>
>>> It takes some fairly deep packet inspection to 'block' an openvpn server
>>> running in TCP mode (not the default UDP) on port 443. I have an openvpn
>>> instance for just this purpose, in case I get stuck somewhere like a wifi
>>> captive portal in an airport lounge behind an overly restrictive firewall.
>>>
>>> On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson  wrote:
>>>

 http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html



 Justin Wilson
 j...@mtin.net

 ---
 http://www.mtin.net Owner/CEO
 xISP Solutions- Consulting – Data Centers - Bandwidth

 http://www.midwest-ix.com  COO/Chairman

 On Jan 4, 2016, at 3:48 PM, Eric Kuhnke  wrote:

 As an ISP why are you wasting your time 'blocking' anything other than
 standard ACLs like port 139/windows file sharing?  It's not your duty or
 responsibility. If people want to implement their own firewall at their
 self-owned router/CPE, let them, or if they want to buy some net nanny
 software for their end point device, that's their responsibility.

 An ISP is a* pipe*.

 On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke  wrote:

> We're dealing with a customer who is trying to block porn from their
> house.  The person who has the 'problem' is tech savvy, and is using VPN
> Services.  Is there any way to block someone like this?  I'm guessing any
> content filtering wouldn't work because the VPN is terminating on the
> computer behind the router.  Any sort of IP or DNS Block they would be 
> able
> to bypass.  Is there any way to stop a tech person from getting what they
> want?  Right now our only thought is to put in like a 10k/s queue on their
> connection during the overnight hours.  Other options?
>



>>>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Tim Reichhart]

Philip that requires an static IP for one customer fyi.

Tim


-Original Message-
From: "Philip Rankin" <wireless...@gmail.com>
To: af <af@afmug.com>
Date: 01/05/16 10:03 PM
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn

I have used open dns pretty successfully.
 
On Tue, Jan 5, 2016 at 8:48 PM, Josh Luthman <j...@imaginenetworksllc.com> 
wrote:

Upsidedownternet :)
Josh Luthman
Office: 937-552-2340937-552-2340
Direct: 937-552-2343937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373On Jan 5, 2016 9:40 PM, "Eric Kuhnke" <eric.kuh...@gmail.com> 
wrote:

Google 'obfsproxy' , it can be used with a self hosted tor relay or openvpn. 
Make all your net traffic look like http (not HTTPS) cat jpegs.On Jan 5, 2016 
5:30 PM, "Josh Reynolds" <j...@kyneticwifi.com> wrote:

Yup. If you really want to get around VPN blockers, proxies, and things like 
ssh tunnels... It's really hard when the person you want to block controls both 
ends of the tunnel.On Jan 4, 2016 3:00 PM, "Eric Kuhnke" 
<eric.kuh...@gmail.com> wrote:
It takes some fairly deep packet inspection to 'block' an openvpn server 
running in TCP mode (not the default UDP) on port 443. I have an openvpn 
instance for just this purpose, in case I get stuck somewhere like a wifi 
captive portal in an airport lounge behind an overly restrictive firewall.
 
 
On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson <li...@mtin.net> wrote:
 
http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html






Justin Wilson
j...@mtin.net


---
http://www.mtin.net Owner/CEO
xISP Solutions- Consulting - Data Centers - Bandwidth

 
 http://www.midwest-ix.com  COO/Chairman
 



On Jan 4, 2016, at 3:48 PM, Eric Kuhnke <eric.kuh...@gmail.com> wrote:


 
As an ISP why are you wasting your time 'blocking' anything other than standard 
ACLs like port 139/windows file sharing?  It's not your duty or responsibility. 
If people want to implement their own firewall at their self-owned router/CPE, 
let them, or if they want to buy some net nanny software for their end point 
device, that's their responsibility.


An ISP is a pipe.
 
 
 On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke <n...@blastcomm.com> wrote:
We're dealing with a customer who is trying to block porn from their house.  
The person who has the 'problem' is tech savvy, and is using VPN Services.  Is 
there any way to block someone like this?  I'm guessing any content filtering 
wouldn't work because the VPN is terminating on the computer behind the router. 
 Any sort of IP or DNS Block they would be able to bypass.  Is there any way to 
stop a tech person from getting what they want?  Right now our only thought is 
to put in like a 10k/s queue on their connection during the overnight hours.  
Other options?
 
 
 

 
 
 
 
 
 
 



--
Philip J. Rankin
Wireless Telecommunications Services
PO Box 24
Pittsburg, KS  66762
 
 
Call
Send SMS
Call from mobile
Add to Skype
You'll need Skype CreditFree via Skype

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Eric Kuhnke]

Google 'obfsproxy' , it can be used with a self hosted tor relay or
openvpn. Make all your net traffic look like http (not HTTPS) cat jpegs.
On Jan 5, 2016 5:30 PM, "Josh Reynolds"  wrote:

> Yup. If you really want to get around VPN blockers, proxies, and things
> like ssh tunnels... It's really hard when the person you want to block
> controls both ends of the tunnel.
> On Jan 4, 2016 3:00 PM, "Eric Kuhnke"  wrote:
>
>> It takes some fairly deep packet inspection to 'block' an openvpn server
>> running in TCP mode (not the default UDP) on port 443. I have an openvpn
>> instance for just this purpose, in case I get stuck somewhere like a wifi
>> captive portal in an airport lounge behind an overly restrictive firewall.
>>
>> On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson  wrote:
>>
>>>
>>> http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html
>>>
>>>
>>>
>>> Justin Wilson
>>> j...@mtin.net
>>>
>>> ---
>>> http://www.mtin.net Owner/CEO
>>> xISP Solutions- Consulting – Data Centers - Bandwidth
>>>
>>> http://www.midwest-ix.com  COO/Chairman
>>>
>>> On Jan 4, 2016, at 3:48 PM, Eric Kuhnke  wrote:
>>>
>>> As an ISP why are you wasting your time 'blocking' anything other than
>>> standard ACLs like port 139/windows file sharing?  It's not your duty or
>>> responsibility. If people want to implement their own firewall at their
>>> self-owned router/CPE, let them, or if they want to buy some net nanny
>>> software for their end point device, that's their responsibility.
>>>
>>> An ISP is a* pipe*.
>>>
>>> On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke  wrote:
>>>
 We're dealing with a customer who is trying to block porn from their
 house.  The person who has the 'problem' is tech savvy, and is using VPN
 Services.  Is there any way to block someone like this?  I'm guessing any
 content filtering wouldn't work because the VPN is terminating on the
 computer behind the router.  Any sort of IP or DNS Block they would be able
 to bypass.  Is there any way to stop a tech person from getting what they
 want?  Right now our only thought is to put in like a 10k/s queue on their
 connection during the overnight hours.  Other options?

>>>
>>>
>>>
>>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Philip Rankin]

Not really.  There is a little program that open dns supplies that keeps
the network info current with them.  It all works very well.

On Tue, Jan 5, 2016 at 9:05 PM, Tim Reichhart <
timreichh...@hometowncable.net> wrote:

> Philip that requires an static IP for one customer fyi.
>
> Tim
>
> --
> -Original Message-
> From: "Philip Rankin" <wireless...@gmail.com>
> To: af <af@afmug.com>
> Date: 01/05/16 10:03 PM
> Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn
>
> I have used open dns pretty successfully.
>
> On Tue, Jan 5, 2016 at 8:48 PM, Josh Luthman <j...@imaginenetworksllc.com>
> wrote:
>
>> Upsidedownternet :)
>>
>> Josh Luthman
>> Office: 937-552-2340937-552-2340
>> Direct: 937-552-2343937-552-2343
>> 1100 Wayne St
>> Suite 1337
>> Troy, OH 45373
>> On Jan 5, 2016 9:40 PM, "Eric Kuhnke" <eric.kuh...@gmail.com> wrote:
>>
>>> Google 'obfsproxy' , it can be used with a self hosted tor relay or
>>> openvpn. Make all your net traffic look like http (not HTTPS) cat jpegs.
>>> On Jan 5, 2016 5:30 PM, "Josh Reynolds" <j...@kyneticwifi.com> wrote:
>>>
>>>> Yup. If you really want to get around VPN blockers, proxies, and things
>>>> like ssh tunnels... It's really hard when the person you want to block
>>>> controls both ends of the tunnel.
>>>> On Jan 4, 2016 3:00 PM, "Eric Kuhnke" <eric.kuh...@gmail.com> wrote:
>>>>
>>>>> It takes some fairly deep packet inspection to 'block' an openvpn
>>>>> server running in TCP mode (not the default UDP) on port 443. I have an
>>>>> openvpn instance for just this purpose, in case I get stuck somewhere like
>>>>> a wifi captive portal in an airport lounge behind an overly restrictive
>>>>> firewall.
>>>>>
>>>>>
>>>>> On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson <li...@mtin.net> wrote:
>>>>>
>>>>>>
>>>>>>
>>>>>> http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html
>>>>>>
>>>>>>
>>>>>>
>>>>>> Justin Wilson
>>>>>> j...@mtin.net
>>>>>>
>>>>>> ---
>>>>>> http://www.mtin.net Owner/CEO
>>>>>> xISP Solutions- Consulting - Data Centers - Bandwidth
>>>>>>
>>>>>>
>>>>>>  http://www.midwest-ix.com COO/Chairman
>>>>>>
>>>>>>
>>>>>> On Jan 4, 2016, at 3:48 PM, Eric Kuhnke <eric.kuh...@gmail.com>
>>>>>> wrote:
>>>>>>
>>>>>>
>>>>>> As an ISP why are you wasting your time 'blocking' anything other
>>>>>> than standard ACLs like port 139/windows file sharing? It's not your duty
>>>>>> or responsibility. If people want to implement their own firewall at 
>>>>>> their
>>>>>> self-owned router/CPE, let them, or if they want to buy some net nanny
>>>>>> software for their end point device, that's their responsibility.
>>>>>>
>>>>>> An ISP is a *pipe*.
>>>>>>
>>>>>>
>>>>>>  On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke <n...@blastcomm.com>
>>>>>> wrote:
>>>>>>
>>>>>>> We're dealing with a customer who is trying to block porn from their
>>>>>>> house. The person who has the 'problem' is tech savvy, and is using VPN
>>>>>>> Services. Is there any way to block someone like this? I'm guessing any
>>>>>>> content filtering wouldn't work because the VPN is terminating on the
>>>>>>> computer behind the router. Any sort of IP or DNS Block they would be 
>>>>>>> able
>>>>>>> to bypass. Is there any way to stop a tech person from getting what they
>>>>>>> want? Right now our only thought is to put in like a 10k/s queue on 
>>>>>>> their
>>>>>>> connection during the overnight hours. Other options?
>>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>
>>>>
>>>
>>>
>>
>>
>
>
>
>
> --
> Philip J. Rankin
> Wireless Telecommunications Services
> PO Box 24
> Pittsburg, KS 66762
>
>
>
> Call
> Send SMS
> Call from mobile
> Add to Skype
> You'll need Skype CreditFree via Skype
>



-- 
Philip J. Rankin
Wireless Telecommunications Services
PO Box 24
Pittsburg, KS  66762

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Tim Reichhart]

Philip I know what program your talking about and it only takes one smart kid 
to remove it.



-Original Message-
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn
From: "Philip Rankin" <wireless...@gmail.com>
To: af <af@afmug.com>
Date: 01/06/16 04:33:16am

Not really.  There is a little program that open dns supplies that keeps the 
network info current with them.  It all works very well. 
On Tue, Jan 5, 2016 at 9:05 PM, Tim Reichhart <timreichh...@hometowncable.net> 
wrote:
Philip that requires an static IP for one customer fyi.

Tim

-Original Message-
From: "Philip Rankin" <wireless...@gmail.com>
To: af <af@afmug.com>
Date: 01/05/16 10:03 PM
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn

I have used open dns pretty successfully. 
 On Tue, Jan 5, 2016 at 8:48 PM, Josh Luthman <j...@imaginenetworksllc.com> 
wrote:
Upsidedownternet :)Josh Luthman
Office: 937-552-2340937-552-2340
Direct: 937-552-2343937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373 On Jan 5, 2016 9:40 PM, "Eric Kuhnke" <eric.kuh...@gmail.com> 
wrote:Google 'obfsproxy' , it can be used with a self hosted tor relay or 
openvpn. Make all your net traffic look like http (not HTTPS) cat jpegs. On Jan 
5, 2016 5:30 PM, "Josh Reynolds" <j...@kyneticwifi.com> wrote:Yup. If you 
really want to get around VPN blockers, proxies, and things like ssh tunnels... 
It's really hard when the person you want to block controls both ends of the 
tunnel. On Jan 4, 2016 3:00 PM, "Eric Kuhnke" <eric.kuh...@gmail.com> wrote:It 
takes some fairly deep packet inspection to 'block' an openvpn server running 
in TCP mode (not the default UDP) on port 443. I have an openvpn instance for 
just this purpose, in case I get stuck somewhere like a wifi captive portal in 
an airport lounge behind an overly restrictive firewall.
  
 On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson <li...@mtin.net> wrote:
 
http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html


Justin wilsonj...@mtin.net
---
http://www.mtin.net Owner/CEOxISP Solutions- Consulting - Data Centers - 
Bandwidth

  http://www.midwest-ix.com COO/Chairman 
On Jan 4, 2016, at 3:48 PM, Eric Kuhnke <eric.kuh...@gmail.com> wrote:
 As an ISP why are you wasting your time 'blocking' anything other than 
standard ACLs like port 139/windows file sharing? It's not your duty or 
responsibility. If people want to implement their own firewall at their 
self-owned router/CPE, let them, or if they want to buy some net nanny software 
for their end point device, that's their responsibility.

An ISP is a pipe.
  
 On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke <n...@blastcomm.com> wrote:
We're dealing with a customer who is trying to block porn from their house. The 
person who has the 'problem' is tech savvy, and is using VPN Services. Is there 
any way to block someone like this? I'm guessing any content filtering wouldn't 
work because the VPN is terminating on the computer behind the router. Any sort 
of IP or DNS Block they would be able to bypass. Is there any way to stop a 
tech person from getting what they want? Right now our only thought is to put 
in like a 10k/s queue on their connection during the overnight hours. Other 
options?
 
  
  
 

--
 Philip J. RankinWireless Telecommunications Services
PO Box 24
Pittsburg, KS 66762CallSend SMSCall from mobileAdd to SkypeYou'll need 
Skype CreditFree via Skype

--
Philip J. RankinWireless Telecommunications Services
PO Box 24
Pittsburg, KS  66762  

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Reynolds]

Yup. If you really want to get around VPN blockers, proxies, and things
like ssh tunnels... It's really hard when the person you want to block
controls both ends of the tunnel.
On Jan 4, 2016 3:00 PM, "Eric Kuhnke"  wrote:

> It takes some fairly deep packet inspection to 'block' an openvpn server
> running in TCP mode (not the default UDP) on port 443. I have an openvpn
> instance for just this purpose, in case I get stuck somewhere like a wifi
> captive portal in an airport lounge behind an overly restrictive firewall.
>
> On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson  wrote:
>
>>
>> http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html
>>
>>
>>
>> Justin Wilson
>> j...@mtin.net
>>
>> ---
>> http://www.mtin.net Owner/CEO
>> xISP Solutions- Consulting – Data Centers - Bandwidth
>>
>> http://www.midwest-ix.com  COO/Chairman
>>
>> On Jan 4, 2016, at 3:48 PM, Eric Kuhnke  wrote:
>>
>> As an ISP why are you wasting your time 'blocking' anything other than
>> standard ACLs like port 139/windows file sharing?  It's not your duty or
>> responsibility. If people want to implement their own firewall at their
>> self-owned router/CPE, let them, or if they want to buy some net nanny
>> software for their end point device, that's their responsibility.
>>
>> An ISP is a* pipe*.
>>
>> On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke  wrote:
>>
>>> We're dealing with a customer who is trying to block porn from their
>>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>>> Services.  Is there any way to block someone like this?  I'm guessing any
>>> content filtering wouldn't work because the VPN is terminating on the
>>> computer behind the router.  Any sort of IP or DNS Block they would be able
>>> to bypass.  Is there any way to stop a tech person from getting what they
>>> want?  Right now our only thought is to put in like a 10k/s queue on their
>>> connection during the overnight hours.  Other options?
>>>
>>
>>
>>
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Eric Kuhnke]

It takes some fairly deep packet inspection to 'block' an openvpn server
running in TCP mode (not the default UDP) on port 443. I have an openvpn
instance for just this purpose, in case I get stuck somewhere like a wifi
captive portal in an airport lounge behind an overly restrictive firewall.

On Mon, Jan 4, 2016 at 12:55 PM, Justin Wilson  wrote:

>
> http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html
>
>
>
> Justin Wilson
> j...@mtin.net
>
> ---
> http://www.mtin.net Owner/CEO
> xISP Solutions- Consulting – Data Centers - Bandwidth
>
> http://www.midwest-ix.com  COO/Chairman
>
> On Jan 4, 2016, at 3:48 PM, Eric Kuhnke  wrote:
>
> As an ISP why are you wasting your time 'blocking' anything other than
> standard ACLs like port 139/windows file sharing?  It's not your duty or
> responsibility. If people want to implement their own firewall at their
> self-owned router/CPE, let them, or if they want to buy some net nanny
> software for their end point device, that's their responsibility.
>
> An ISP is a* pipe*.
>
> On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke  wrote:
>
>> We're dealing with a customer who is trying to block porn from their
>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>> Services.  Is there any way to block someone like this?  I'm guessing any
>> content filtering wouldn't work because the VPN is terminating on the
>> computer behind the router.  Any sort of IP or DNS Block they would be able
>> to bypass.  Is there any way to stop a tech person from getting what they
>> want?  Right now our only thought is to put in like a 10k/s queue on their
>> connection during the overnight hours.  Other options?
>>
>
>
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Mike Hammett]

SSL VPNs on port 443 do wonders. :-) 




- 
Mike Hammett 
Intelligent Computing Solutions 
http://www.ics-il.com 



Midwest Internet Exchange 
http://www.midwest-ix.com 


- Original Message -

From: "Craig Baird" <cr...@xpressweb.com> 
To: af@afmug.com 
Sent: Monday, January 4, 2016 11:44:30 AM 
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn 

It depends on just how tech savvy the person is. We had a similar 
situation a while back. Customer's kid was using VPNs to bypass 
whatever controls the customer had in place. We sold the customer a 
Mikrotik, and set it up to block the standard VPN ports. Problem 
solved--at least so far. The kid wasn't tech savvy enough to 
circumvent that. Obviously, that could change. 

Craig 


Quoting Nate Burke <n...@blastcomm.com>: 

> That was my thought, there's always a way around. Where there's a 
> will, there's a way. 
> 
> On 1/4/2016 9:50 AM, Josh Reynolds wrote: 
>> 
>> He can probably shift quite a few ports/methods around, or create 
>> vpns he controls to amazon., etc. Or Tor. Etc etc for every 
>> solution you come up with, there's a way around it. 
>> 
>> Also, this is a social/hr "issue". Treat it as such. 
>> 
>> On Jan 4, 2016 9:45 AM, "Josh Luthman" <j...@imaginenetworksllc.com 
>> <mailto:j...@imaginenetworksllc.com>> wrote: 
>> 
>> VPN hides the traffic, so anything in it is getting through. 
>> Could you do 1kbps for all VPN traffic? 
>> 
>> Block porn with opendns and drop DNS to anything else? 
>> 
>> Josh Luthman 
>> Office: 937-552-2340  
>> Direct: 937-552-2343  
>> 1100 Wayne St 
>> Suite 1337 
>> Troy, OH 45373 
>> 
>> On Jan 4, 2016 10:42 AM, "Nate Burke" <n...@blastcomm.com 
>> <mailto:n...@blastcomm.com>> wrote: 
>> 
>> We're dealing with a customer who is trying to block porn from 
>> their house. The person who has the 'problem' is tech savvy, 
>> and is using VPN Services. Is there any way to block someone 
>> like this? I'm guessing any content filtering wouldn't work 
>> because the VPN is terminating on the computer behind the 
>> router. Any sort of IP or DNS Block they would be able to 
>> bypass. Is there any way to stop a tech person from getting 
>> what they want? Right now our only thought is to put in like 
>> a 10k/s queue on their connection during the overnight 
>> hours. Other options? 
>> 
> 
> 

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Eric Kuhnke]

As an ISP why are you wasting your time 'blocking' anything other than
standard ACLs like port 139/windows file sharing?  It's not your duty or
responsibility. If people want to implement their own firewall at their
self-owned router/CPE, let them, or if they want to buy some net nanny
software for their end point device, that's their responsibility.

An ISP is a* pipe*.

On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke  wrote:

> We're dealing with a customer who is trying to block porn from their
> house.  The person who has the 'problem' is tech savvy, and is using VPN
> Services.  Is there any way to block someone like this?  I'm guessing any
> content filtering wouldn't work because the VPN is terminating on the
> computer behind the router.  Any sort of IP or DNS Block they would be able
> to bypass.  Is there any way to stop a tech person from getting what they
> want?  Right now our only thought is to put in like a 10k/s queue on their
> connection during the overnight hours.  Other options?
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Justin Wilson]

http://www.tomshardware.com/answers/id-2084381/blocking-vpn-students-blocked-websites.html
 




Justin Wilson
j...@mtin.net

---
http://www.mtin.net Owner/CEO
xISP Solutions- Consulting – Data Centers - Bandwidth

http://www.midwest-ix.com  COO/Chairman

> On Jan 4, 2016, at 3:48 PM, Eric Kuhnke  wrote:
> 
> As an ISP why are you wasting your time 'blocking' anything other than 
> standard ACLs like port 139/windows file sharing?  It's not your duty or 
> responsibility. If people want to implement their own firewall at their 
> self-owned router/CPE, let them, or if they want to buy some net nanny 
> software for their end point device, that's their responsibility.
> 
> An ISP is a pipe. 
> 
> On Mon, Jan 4, 2016 at 7:42 AM, Nate Burke  > wrote:
> We're dealing with a customer who is trying to block porn from their house.  
> The person who has the 'problem' is tech savvy, and is using VPN Services.  
> Is there any way to block someone like this?  I'm guessing any content 
> filtering wouldn't work because the VPN is terminating on the computer behind 
> the router.  Any sort of IP or DNS Block they would be able to bypass.  Is 
> there any way to stop a tech person from getting what they want?  Right now 
> our only thought is to put in like a 10k/s queue on their connection during 
> the overnight hours.  Other options?
> 

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Reynolds]

That's... So stone age. Argh :/
On Jan 4, 2016 9:56 AM, "Nate Burke" <n...@blastcomm.com> wrote:

> Not my problem, just trying to be helpful.  They wanted to just cancel the
> internet to fix the problem.
>
> On 1/4/2016 9:53 AM, Paul Stewart wrote:
>
>> Honestly - why is this your problem as the ISP?
>>
>> With a VPN in the mix, it will definitely create some challenges
>>
>> -Original Message-
>> From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
>> Sent: Monday, January 4, 2016 10:43 AM
>> To: Animal Farm <af@afmug.com>
>> Subject: [AFMUG] Blocking Tech Savvy person from Porn
>>
>> We're dealing with a customer who is trying to block porn from their
>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>> Services.  Is there any way to block someone like this?  I'm guessing any
>> content filtering wouldn't work because the VPN is terminating on the
>> computer behind the router.  Any sort of IP or DNS Block they would be able
>> to bypass.  Is there any way to stop a tech person from getting what they
>> want?  Right now our only thought is to put in like a 10k/s queue on their
>> connection during the overnight hours.  Other options?
>>
>
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Ken Hohhof]

Low tech solution:  put the computer where you can see it.


-Original Message- 
From: Nate Burke 
Sent: Monday, January 04, 2016 9:42 AM 
To: Animal Farm 
Subject: [AFMUG] Blocking Tech Savvy person from Porn 

We're dealing with a customer who is trying to block porn from their 
house.  The person who has the 'problem' is tech savvy, and is using VPN 
Services.  Is there any way to block someone like this?  I'm guessing 
any content filtering wouldn't work because the VPN is terminating on 
the computer behind the router.  Any sort of IP or DNS Block they would 
be able to bypass.  Is there any way to stop a tech person from getting 
what they want?  Right now our only thought is to put in like a 10k/s 
queue on their connection during the overnight hours.  Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Luthman]

VPN hides the traffic, so anything in it is getting through.  Could you do
1kbps for all VPN traffic?

Block porn with opendns and drop DNS to anything else?

Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Jan 4, 2016 10:42 AM, "Nate Burke"  wrote:

> We're dealing with a customer who is trying to block porn from their
> house.  The person who has the 'problem' is tech savvy, and is using VPN
> Services.  Is there any way to block someone like this?  I'm guessing any
> content filtering wouldn't work because the VPN is terminating on the
> computer behind the router.  Any sort of IP or DNS Block they would be able
> to bypass.  Is there any way to stop a tech person from getting what they
> want?  Right now our only thought is to put in like a 10k/s queue on their
> connection during the overnight hours.  Other options?
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Nate Burke]

Not my problem, just trying to be helpful.  They wanted to just cancel 
the internet to fix the problem.


On 1/4/2016 9:53 AM, Paul Stewart wrote:

Honestly - why is this your problem as the ISP?

With a VPN in the mix, it will definitely create some challenges

-Original Message-
From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
Sent: Monday, January 4, 2016 10:43 AM
To: Animal Farm <af@afmug.com>
Subject: [AFMUG] Blocking Tech Savvy person from Porn

We're dealing with a customer who is trying to block porn from their house.  
The person who has the 'problem' is tech savvy, and is using VPN Services.  Is 
there any way to block someone like this?  I'm guessing any content filtering 
wouldn't work because the VPN is terminating on the computer behind the router. 
 Any sort of IP or DNS Block they would be able to bypass.  Is there any way to 
stop a tech person from getting what they want?  Right now our only thought is 
to put in like a 10k/s queue on their connection during the overnight hours.  
Other options?

[AFMUG] Blocking Tech Savvy person from Porn

[Nate Burke]

We're dealing with a customer who is trying to block porn from their 
house.  The person who has the 'problem' is tech savvy, and is using VPN 
Services.  Is there any way to block someone like this?  I'm guessing 
any content filtering wouldn't work because the VPN is terminating on 
the computer behind the router.  Any sort of IP or DNS Block they would 
be able to bypass.  Is there any way to stop a tech person from getting 
what they want?  Right now our only thought is to put in like a 10k/s 
queue on their connection during the overnight hours.  Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Reynolds]

He can probably shift quite a few ports/methods around, or create vpns he
controls to amazon., etc. Or Tor. Etc etc for every solution you come up
with, there's a way around it.

Also, this is a social/hr "issue". Treat it as such.
On Jan 4, 2016 9:45 AM, "Josh Luthman"  wrote:

> VPN hides the traffic, so anything in it is getting through.  Could you do
> 1kbps for all VPN traffic?
>
> Block porn with opendns and drop DNS to anything else?
>
> Josh Luthman
> Office: 937-552-2340
> Direct: 937-552-2343
> 1100 Wayne St
> Suite 1337
> Troy, OH 45373
> On Jan 4, 2016 10:42 AM, "Nate Burke"  wrote:
>
>> We're dealing with a customer who is trying to block porn from their
>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>> Services.  Is there any way to block someone like this?  I'm guessing any
>> content filtering wouldn't work because the VPN is terminating on the
>> computer behind the router.  Any sort of IP or DNS Block they would be able
>> to bypass.  Is there any way to stop a tech person from getting what they
>> want?  Right now our only thought is to put in like a 10k/s queue on their
>> connection during the overnight hours.  Other options?
>>
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Chuck McCown]

Add a keystroke logger to their computer.
Public shaming or cutting the wires are the only two options that are 
practical.


I presume there is somekind of crippled browser that only allows whitelisted 
sites and the computer is locked down such that you can only use that 
browser and nothing else would do the trick.  But if the house has wifi and 
the other people in the house want a bit of freedom, I can't imagine a 
solution.


Perhaps an HDMI splitter so the monitor is displayed in multiple places in 
the home...


Kinda like stopping an alcoholic from getting a drink.
Handcuffs and jail are about the only thing that works there.

-Original Message- 
From: Nate Burke

Sent: Monday, January 04, 2016 8:42 AM
To: Animal Farm
Subject: [AFMUG] Blocking Tech Savvy person from Porn

We're dealing with a customer who is trying to block porn from their
house.  The person who has the 'problem' is tech savvy, and is using VPN
Services.  Is there any way to block someone like this?  I'm guessing
any content filtering wouldn't work because the VPN is terminating on
the computer behind the router.  Any sort of IP or DNS Block they would
be able to bypass.  Is there any way to stop a tech person from getting
what they want?  Right now our only thought is to put in like a 10k/s
queue on their connection during the overnight hours.  Other options? 

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Adam Moffett]

I wonder if the kid has a real problem or if it's just a battle of wills 
with his parents.  I used to do stuff specifically because I was told 
not to.  ( Sometimes maybe I still do )




On 1/4/2016 10:56 AM, Nate Burke wrote:
Not my problem, just trying to be helpful.  They wanted to just cancel 
the internet to fix the problem.


On 1/4/2016 9:53 AM, Paul Stewart wrote:

Honestly - why is this your problem as the ISP?

With a VPN in the mix, it will definitely create some challenges

-Original Message-
From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
Sent: Monday, January 4, 2016 10:43 AM
To: Animal Farm <af@afmug.com>
Subject: [AFMUG] Blocking Tech Savvy person from Porn

We're dealing with a customer who is trying to block porn from their 
house.  The person who has the 'problem' is tech savvy, and is using 
VPN Services.  Is there any way to block someone like this?  I'm 
guessing any content filtering wouldn't work because the VPN is 
terminating on the computer behind the router.  Any sort of IP or DNS 
Block they would be able to bypass.  Is there any way to stop a tech 
person from getting what they want?  Right now our only thought is to 
put in like a 10k/s queue on their connection during the overnight 
hours. Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Chuck McCown]

Or is it a wife that thinks her husband should have no interest in such 
things...


-Original Message- 
From: Adam Moffett

Sent: Monday, January 04, 2016 9:07 AM
To: af@afmug.com
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn

I wonder if the kid has a real problem or if it's just a battle of wills
with his parents.  I used to do stuff specifically because I was told
not to.  ( Sometimes maybe I still do )



On 1/4/2016 10:56 AM, Nate Burke wrote:
Not my problem, just trying to be helpful.  They wanted to just cancel the 
internet to fix the problem.


On 1/4/2016 9:53 AM, Paul Stewart wrote:

Honestly - why is this your problem as the ISP?

With a VPN in the mix, it will definitely create some challenges

-Original Message-
From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
Sent: Monday, January 4, 2016 10:43 AM
To: Animal Farm <af@afmug.com>
Subject: [AFMUG] Blocking Tech Savvy person from Porn

We're dealing with a customer who is trying to block porn from their 
house.  The person who has the 'problem' is tech savvy, and is using VPN 
Services.  Is there any way to block someone like this?  I'm guessing any 
content filtering wouldn't work because the VPN is terminating on the 
computer behind the router.  Any sort of IP or DNS Block they would be 
able to bypass.  Is there any way to stop a tech person from getting what 
they want?  Right now our only thought is to put in like a 10k/s queue on 
their connection during the overnight hours. Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Reynolds]

I find your suggestion repulsive, but applaud you for stating personal
proclivities in a public forum.

It's a brave new world this 2016.
On Jan 4, 2016 10:13 AM, "Simon Westlake" <simon@sonar.software> wrote:

> Superglue sandpaper to hands.
> On Jan 4, 2016 10:10 AM, "Josh Reynolds" <j...@kyneticwifi.com> wrote:
>
>> Or s/he's just a normal person that has raging hormones and likes to see
>> genitals and beautiful people doing enjoyable things.
>>
>> There's always LTE, or the friends house.
>> On Jan 4, 2016 10:07 AM, "Adam Moffett" <dmmoff...@gmail.com> wrote:
>>
>>> I wonder if the kid has a real problem or if it's just a battle of wills
>>> with his parents.  I used to do stuff specifically because I was told not
>>> to.  ( Sometimes maybe I still do )
>>>
>>>
>>>
>>> On 1/4/2016 10:56 AM, Nate Burke wrote:
>>>
>>>> Not my problem, just trying to be helpful.  They wanted to just cancel
>>>> the internet to fix the problem.
>>>>
>>>> On 1/4/2016 9:53 AM, Paul Stewart wrote:
>>>>
>>>>> Honestly - why is this your problem as the ISP?
>>>>>
>>>>> With a VPN in the mix, it will definitely create some challenges
>>>>>
>>>>> -Original Message-
>>>>> From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
>>>>> Sent: Monday, January 4, 2016 10:43 AM
>>>>> To: Animal Farm <af@afmug.com>
>>>>> Subject: [AFMUG] Blocking Tech Savvy person from Porn
>>>>>
>>>>> We're dealing with a customer who is trying to block porn from their
>>>>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>>>>> Services.  Is there any way to block someone like this?  I'm guessing any
>>>>> content filtering wouldn't work because the VPN is terminating on the
>>>>> computer behind the router.  Any sort of IP or DNS Block they would be 
>>>>> able
>>>>> to bypass.  Is there any way to stop a tech person from getting what they
>>>>> want?  Right now our only thought is to put in like a 10k/s queue on their
>>>>> connection during the overnight hours. Other options?
>>>>>
>>>>
>>>>
>>>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[That One Guy /sarcasm]

Fortigate is a good all in one solution for this, the problem being it
requires a tech savvy person to operate it. they have made the
management/cloud interface alot more consumer friendly.

Alot depends on how tech savvy the person actually is, if theyre just
downloading some 3rd party tools for circumvention, theyre not savvy theyre
just good at google.

I would assume if anyone on this list wanted to get to some porn, we could,
regardless of the tools put in place, look at the nonsense we pull anytime
we get on the wireless at an event or motel, we are all dicks. If hes like
us, its pointless to try, it will just ultimately adversely affect the rest
of the users while he goes about his business.

The next big thing to address would be is how much the person wants to pay
for managing it. Its not a set and forget scenario, he will continue
looking for chinks in the armor.

If its a bad enough issue, it may be better just to provide some contact
information for some mental health professionals because there may be
something deeper at play. Those kinds of addictions, while fun to joke
about, can be very destructive, and have a real potential to bleed over
into others lives with horrible outcomes like molestation and rape. It
could be that blocking access to the perversion could lead to the
individual seeking out pleasures in the flesh instead of releasing the
beast digitally.

On Mon, Jan 4, 2016 at 10:47 AM, Josh Luthman <j...@imaginenetworksllc.com>
wrote:

> Which does nothing for ptp or bittorrent.  Certainly doesn't apply to
> someone using a VPN.
>
>
> Josh Luthman
> Office: 937-552-2340
> Direct: 937-552-2343
> 1100 Wayne St
> Suite 1337
> Troy, OH 45373
>
> On Mon, Jan 4, 2016 at 11:44 AM, Rory Conaway <r...@triadwireless.net>
> wrote:
>
>> Barracuda Web Filter.
>>
>>
>>
>> Rory
>>
>>
>>
>> *From:* Af [mailto:af-boun...@afmug.com] *On Behalf Of *Jaime Solorza
>> *Sent:* Monday, January 4, 2016 9:30 AM
>> *To:* Animal Farm
>> *Subject:* Re: [AFMUG] Blocking Tech Savvy person from Porn
>>
>>
>>
>> We used Lightspeed solutions at district but pricey.Untangle is free
>> and full version is low cost..
>>
>> On Jan 4, 2016 8:42 AM, "Nate Burke" <n...@blastcomm.com> wrote:
>>
>> We're dealing with a customer who is trying to block porn from their
>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>> Services.  Is there any way to block someone like this?  I'm guessing any
>> content filtering wouldn't work because the VPN is terminating on the
>> computer behind the router.  Any sort of IP or DNS Block they would be able
>> to bypass.  Is there any way to stop a tech person from getting what they
>> want?  Right now our only thought is to put in like a 10k/s queue on their
>> connection during the overnight hours.  Other options?
>>
>
>


-- 
If you only see yourself as part of the team but you don't see your team as
part of yourself you have already failed as part of the team.

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Paul Stewart]

Honestly - why is this your problem as the ISP?

With a VPN in the mix, it will definitely create some challenges 

-Original Message-
From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
Sent: Monday, January 4, 2016 10:43 AM
To: Animal Farm <af@afmug.com>
Subject: [AFMUG] Blocking Tech Savvy person from Porn

We're dealing with a customer who is trying to block porn from their house.  
The person who has the 'problem' is tech savvy, and is using VPN Services.  Is 
there any way to block someone like this?  I'm guessing any content filtering 
wouldn't work because the VPN is terminating on the computer behind the router. 
 Any sort of IP or DNS Block they would be able to bypass.  Is there any way to 
stop a tech person from getting what they want?  Right now our only thought is 
to put in like a 10k/s queue on their connection during the overnight hours.  
Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Jeff Broadwick - Lists]

Only way I can think of is to get rid of internet entirely.

Jeff Broadwick
ConVergence Technologies, Inc.
312-205-2519 Office
574-220-7826 Cell
jbroadw...@converge-tech.com

> On Jan 4, 2016, at 10:53 AM, Paul Stewart <p...@paulstewart.org> wrote:
> 
> Honestly - why is this your problem as the ISP?
> 
> With a VPN in the mix, it will definitely create some challenges 
> 
> -Original Message-
> From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
> Sent: Monday, January 4, 2016 10:43 AM
> To: Animal Farm <af@afmug.com>
> Subject: [AFMUG] Blocking Tech Savvy person from Porn
> 
> We're dealing with a customer who is trying to block porn from their house.  
> The person who has the 'problem' is tech savvy, and is using VPN Services.  
> Is there any way to block someone like this?  I'm guessing any content 
> filtering wouldn't work because the VPN is terminating on the computer behind 
> the router.  Any sort of IP or DNS Block they would be able to bypass.  Is 
> there any way to stop a tech person from getting what they want?  Right now 
> our only thought is to put in like a 10k/s queue on their connection during 
> the overnight hours.  Other options?
> 

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Reynolds]

Or s/he's just a normal person that has raging hormones and likes to see
genitals and beautiful people doing enjoyable things.

There's always LTE, or the friends house.
On Jan 4, 2016 10:07 AM, "Adam Moffett" <dmmoff...@gmail.com> wrote:

> I wonder if the kid has a real problem or if it's just a battle of wills
> with his parents.  I used to do stuff specifically because I was told not
> to.  ( Sometimes maybe I still do )
>
>
>
> On 1/4/2016 10:56 AM, Nate Burke wrote:
>
>> Not my problem, just trying to be helpful.  They wanted to just cancel
>> the internet to fix the problem.
>>
>> On 1/4/2016 9:53 AM, Paul Stewart wrote:
>>
>>> Honestly - why is this your problem as the ISP?
>>>
>>> With a VPN in the mix, it will definitely create some challenges
>>>
>>> -Original Message-
>>> From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
>>> Sent: Monday, January 4, 2016 10:43 AM
>>> To: Animal Farm <af@afmug.com>
>>> Subject: [AFMUG] Blocking Tech Savvy person from Porn
>>>
>>> We're dealing with a customer who is trying to block porn from their
>>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>>> Services.  Is there any way to block someone like this?  I'm guessing any
>>> content filtering wouldn't work because the VPN is terminating on the
>>> computer behind the router.  Any sort of IP or DNS Block they would be able
>>> to bypass.  Is there any way to stop a tech person from getting what they
>>> want?  Right now our only thought is to put in like a 10k/s queue on their
>>> connection during the overnight hours. Other options?
>>>
>>
>>
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Rory Conaway]

Barracuda Web Filter.

Rory

From: Af [mailto:af-boun...@afmug.com] On Behalf Of Jaime Solorza
Sent: Monday, January 4, 2016 9:30 AM
To: Animal Farm
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn


We used Lightspeed solutions at district but pricey.Untangle is free and 
full version is low cost..
On Jan 4, 2016 8:42 AM, "Nate Burke" 
<n...@blastcomm.com<mailto:n...@blastcomm.com>> wrote:
We're dealing with a customer who is trying to block porn from their house.  
The person who has the 'problem' is tech savvy, and is using VPN Services.  Is 
there any way to block someone like this?  I'm guessing any content filtering 
wouldn't work because the VPN is terminating on the computer behind the router. 
 Any sort of IP or DNS Block they would be able to bypass.  Is there any way to 
stop a tech person from getting what they want?  Right now our only thought is 
to put in like a 10k/s queue on their connection during the overnight hours.  
Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Ken Hohhof]

If this is an actual porn addiction, it is like any other addiction.  Not going 
to solve it by just installing an app.

Addiction though means it is compulsive and interfering with normal life.  Not 
just doing something that someone else objects to.

Something I consider a red flag is when I see hours of traffic per day to sex 
cam sites.

My wife on the other hand is addicted to www.cuteoverload.com.  Is there a 12 
step program for cat video addiction?


From: Jaime Solorza 
Sent: Monday, January 04, 2016 10:29 AM
To: Animal Farm 
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn

We used Lightspeed solutions at district but pricey.Untangle is free and 
full version is low cost..

On Jan 4, 2016 8:42 AM, "Nate Burke" <n...@blastcomm.com> wrote:

  We're dealing with a customer who is trying to block porn from their house.  
The person who has the 'problem' is tech savvy, and is using VPN Services.  Is 
there any way to block someone like this?  I'm guessing any content filtering 
wouldn't work because the VPN is terminating on the computer behind the router. 
 Any sort of IP or DNS Block they would be able to bypass.  Is there any way to 
stop a tech person from getting what they want?  Right now our only thought is 
to put in like a 10k/s queue on their connection during the overnight hours.  
Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Bill Prince]

That's something that I would have expected from Steve...

bp
<part15sbs{at}gmail{dot}com>

On 1/4/2016 8:13 AM, Simon Westlake wrote:


Superglue sandpaper to hands.

On Jan 4, 2016 10:10 AM, "Josh Reynolds" <j...@kyneticwifi.com 
<mailto:j...@kyneticwifi.com>> wrote:


Or s/he's just a normal person that has raging hormones and likes
to see genitals and beautiful people doing enjoyable things.

There's always LTE, or the friends house.

On Jan 4, 2016 10:07 AM, "Adam Moffett" <dmmoff...@gmail.com
<mailto:dmmoff...@gmail.com>> wrote:

I wonder if the kid has a real problem or if it's just a
battle of wills with his parents.  I used to do stuff
specifically because I was told not to.  ( Sometimes maybe I
still do )



On 1/4/2016 10:56 AM, Nate Burke wrote:

Not my problem, just trying to be helpful.  They wanted to
just cancel the internet to fix the problem.

On 1/4/2016 9:53 AM, Paul Stewart wrote:

Honestly - why is this your problem as the ISP?

With a VPN in the mix, it will definitely create some
challenges

-Original Message-
From: Af [mailto:af-boun...@afmug.com
<mailto:af-boun...@afmug.com>] On Behalf Of Nate Burke
Sent: Monday, January 4, 2016 10:43 AM
To: Animal Farm <af@afmug.com <mailto:af@afmug.com>>
    Subject: [AFMUG] Blocking Tech Savvy person from Porn

We're dealing with a customer who is trying to block
porn from their house.  The person who has the
'problem' is tech savvy, and is using VPN Services. Is
there any way to block someone like this?  I'm
guessing any content filtering wouldn't work because
the VPN is terminating on the computer behind the
router.  Any sort of IP or DNS Block they would be
able to bypass.  Is there any way to stop a tech
person from getting what they want?  Right now our
only thought is to put in like a 10k/s queue on their
connection during the overnight hours. Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Luthman]

Start a VM would be the easiest way around that...assuming he's reasonably
competent.

Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Jan 4, 2016 12:34 PM, "Rory Conaway" <r...@triadwireless.net> wrote:

> Josh, the Barracuda can block by category and by application.  In the case
> of VPN’s, we block those also and ask the customer to call us if they need
> one.  If they don’t like the service, they can always go to Comcast or
> CenturyLink.  In this case though, it looks like the homeowner wants
> service and just needs to stop someone inside.  In that case, you put the
> IP address under these restrictions.
>
>
>
> Rory
>
>
>
> *From:* Af [mailto:af-boun...@afmug.com] *On Behalf Of *Josh Luthman
> *Sent:* Monday, January 4, 2016 9:47 AM
> *To:* af@afmug.com
> *Subject:* Re: [AFMUG] Blocking Tech Savvy person from Porn
>
>
>
> Which does nothing for ptp or bittorrent.  Certainly doesn't apply to
> someone using a VPN.
>
>
>
>
> Josh Luthman
> Office: 937-552-2340
> Direct: 937-552-2343
> 1100 Wayne St
> Suite 1337
> Troy, OH 45373
>
>
>
> On Mon, Jan 4, 2016 at 11:44 AM, Rory Conaway <r...@triadwireless.net>
> wrote:
>
> Barracuda Web Filter.
>
>
>
> Rory
>
>
>
> *From:* Af [mailto:af-boun...@afmug.com] *On Behalf Of *Jaime Solorza
> *Sent:* Monday, January 4, 2016 9:30 AM
> *To:* Animal Farm
> *Subject:* Re: [AFMUG] Blocking Tech Savvy person from Porn
>
>
>
> We used Lightspeed solutions at district but pricey.Untangle is free
> and full version is low cost..
>
> On Jan 4, 2016 8:42 AM, "Nate Burke" <n...@blastcomm.com> wrote:
>
> We're dealing with a customer who is trying to block porn from their
> house.  The person who has the 'problem' is tech savvy, and is using VPN
> Services.  Is there any way to block someone like this?  I'm guessing any
> content filtering wouldn't work because the VPN is terminating on the
> computer behind the router.  Any sort of IP or DNS Block they would be able
> to bypass.  Is there any way to stop a tech person from getting what they
> want?  Right now our only thought is to put in like a 10k/s queue on their
> connection during the overnight hours.  Other options?
>
>
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Rory Conaway]

Josh, the Barracuda can block by category and by application.  In the case of 
VPN’s, we block those also and ask the customer to call us if they need one.  
If they don’t like the service, they can always go to Comcast or CenturyLink.  
In this case though, it looks like the homeowner wants service and just needs 
to stop someone inside.  In that case, you put the IP address under these 
restrictions.

Rory

From: Af [mailto:af-boun...@afmug.com] On Behalf Of Josh Luthman
Sent: Monday, January 4, 2016 9:47 AM
To: af@afmug.com
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn

Which does nothing for ptp or bittorrent.  Certainly doesn't apply to someone 
using a VPN.


Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373

On Mon, Jan 4, 2016 at 11:44 AM, Rory Conaway 
<r...@triadwireless.net<mailto:r...@triadwireless.net>> wrote:
Barracuda Web Filter.

Rory

From: Af [mailto:af-boun...@afmug.com<mailto:af-boun...@afmug.com>] On Behalf 
Of Jaime Solorza
Sent: Monday, January 4, 2016 9:30 AM
To: Animal Farm
Subject: Re: [AFMUG] Blocking Tech Savvy person from Porn


We used Lightspeed solutions at district but pricey.Untangle is free and 
full version is low cost..
On Jan 4, 2016 8:42 AM, "Nate Burke" 
<n...@blastcomm.com<mailto:n...@blastcomm.com>> wrote:
We're dealing with a customer who is trying to block porn from their house.  
The person who has the 'problem' is tech savvy, and is using VPN Services.  Is 
there any way to block someone like this?  I'm guessing any content filtering 
wouldn't work because the VPN is terminating on the computer behind the router. 
 Any sort of IP or DNS Block they would be able to bypass.  Is there any way to 
stop a tech person from getting what they want?  Right now our only thought is 
to put in like a 10k/s queue on their connection during the overnight hours.  
Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Craig Baird]

It depends on just how tech savvy the person is.  We had a similar  
situation a while back.  Customer's kid was using VPNs to bypass  
whatever controls the customer had in place.  We sold the customer a  
Mikrotik, and set it up to block the standard VPN ports.  Problem  
solved--at least so far.  The kid wasn't tech savvy enough to  
circumvent that.  Obviously, that could change.


Craig


Quoting Nate Burke :

That was my thought, there's always a way around. Where there's a  
will, there's a way.


On 1/4/2016 9:50 AM, Josh Reynolds wrote:


He can probably shift quite a few ports/methods around, or create  
vpns he controls to amazon., etc. Or Tor. Etc etc for every  
solution you come up with, there's a way around it.


Also, this is a social/hr "issue". Treat it as such.

On Jan 4, 2016 9:45 AM, "Josh Luthman" > wrote:


   VPN hides the traffic, so anything in it is getting through.  
Could you do 1kbps for all VPN traffic?


   Block porn with opendns and drop DNS to anything else?

   Josh Luthman
   Office: 937-552-2340 
   Direct: 937-552-2343 
   1100 Wayne St
   Suite 1337
   Troy, OH 45373

   On Jan 4, 2016 10:42 AM, "Nate Burke" > wrote:

   We're dealing with a customer who is trying to block porn from
   their house.  The person who has the 'problem' is tech savvy,
   and is using VPN Services.  Is there any way to block someone
   like this?  I'm guessing any content filtering wouldn't work
   because the VPN is terminating on the computer behind the
   router.  Any sort of IP or DNS Block they would be able to
   bypass.  Is there any way to stop a tech person from getting
   what they want?  Right now our only thought is to put in like
   a 10k/s queue on their connection during the overnight  
hours. Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Simon Westlake]

Everyone is always looking for an expensive, complicated, technical
solution. Sometimes the simplest ones are best!
On Jan 4, 2016 10:18 AM, "Josh Reynolds" <j...@kyneticwifi.com> wrote:

> I find your suggestion repulsive, but applaud you for stating personal
> proclivities in a public forum.
>
> It's a brave new world this 2016.
> On Jan 4, 2016 10:13 AM, "Simon Westlake" <simon@sonar.software> wrote:
>
>> Superglue sandpaper to hands.
>> On Jan 4, 2016 10:10 AM, "Josh Reynolds" <j...@kyneticwifi.com> wrote:
>>
>>> Or s/he's just a normal person that has raging hormones and likes to see
>>> genitals and beautiful people doing enjoyable things.
>>>
>>> There's always LTE, or the friends house.
>>> On Jan 4, 2016 10:07 AM, "Adam Moffett" <dmmoff...@gmail.com> wrote:
>>>
>>>> I wonder if the kid has a real problem or if it's just a battle of
>>>> wills with his parents.  I used to do stuff specifically because I was told
>>>> not to.  ( Sometimes maybe I still do )
>>>>
>>>>
>>>>
>>>> On 1/4/2016 10:56 AM, Nate Burke wrote:
>>>>
>>>>> Not my problem, just trying to be helpful.  They wanted to just cancel
>>>>> the internet to fix the problem.
>>>>>
>>>>> On 1/4/2016 9:53 AM, Paul Stewart wrote:
>>>>>
>>>>>> Honestly - why is this your problem as the ISP?
>>>>>>
>>>>>> With a VPN in the mix, it will definitely create some challenges
>>>>>>
>>>>>> -Original Message-
>>>>>> From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
>>>>>> Sent: Monday, January 4, 2016 10:43 AM
>>>>>> To: Animal Farm <af@afmug.com>
>>>>>> Subject: [AFMUG] Blocking Tech Savvy person from Porn
>>>>>>
>>>>>> We're dealing with a customer who is trying to block porn from their
>>>>>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>>>>>> Services.  Is there any way to block someone like this?  I'm guessing any
>>>>>> content filtering wouldn't work because the VPN is terminating on the
>>>>>> computer behind the router.  Any sort of IP or DNS Block they would be 
>>>>>> able
>>>>>> to bypass.  Is there any way to stop a tech person from getting what they
>>>>>> want?  Right now our only thought is to put in like a 10k/s queue on 
>>>>>> their
>>>>>> connection during the overnight hours. Other options?
>>>>>>
>>>>>
>>>>>
>>>>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Jaime Solorza]

We used Lightspeed solutions at district but pricey.Untangle is free
and full version is low cost..
On Jan 4, 2016 8:42 AM, "Nate Burke"  wrote:

> We're dealing with a customer who is trying to block porn from their
> house.  The person who has the 'problem' is tech savvy, and is using VPN
> Services.  Is there any way to block someone like this?  I'm guessing any
> content filtering wouldn't work because the VPN is terminating on the
> computer behind the router.  Any sort of IP or DNS Block they would be able
> to bypass.  Is there any way to stop a tech person from getting what they
> want?  Right now our only thought is to put in like a 10k/s queue on their
> connection during the overnight hours.  Other options?
>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Simon Westlake]

Superglue sandpaper to hands.
On Jan 4, 2016 10:10 AM, "Josh Reynolds" <j...@kyneticwifi.com> wrote:

> Or s/he's just a normal person that has raging hormones and likes to see
> genitals and beautiful people doing enjoyable things.
>
> There's always LTE, or the friends house.
> On Jan 4, 2016 10:07 AM, "Adam Moffett" <dmmoff...@gmail.com> wrote:
>
>> I wonder if the kid has a real problem or if it's just a battle of wills
>> with his parents.  I used to do stuff specifically because I was told not
>> to.  ( Sometimes maybe I still do )
>>
>>
>>
>> On 1/4/2016 10:56 AM, Nate Burke wrote:
>>
>>> Not my problem, just trying to be helpful.  They wanted to just cancel
>>> the internet to fix the problem.
>>>
>>> On 1/4/2016 9:53 AM, Paul Stewart wrote:
>>>
>>>> Honestly - why is this your problem as the ISP?
>>>>
>>>> With a VPN in the mix, it will definitely create some challenges
>>>>
>>>> -----Original Message-
>>>> From: Af [mailto:af-boun...@afmug.com] On Behalf Of Nate Burke
>>>> Sent: Monday, January 4, 2016 10:43 AM
>>>> To: Animal Farm <af@afmug.com>
>>>> Subject: [AFMUG] Blocking Tech Savvy person from Porn
>>>>
>>>> We're dealing with a customer who is trying to block porn from their
>>>> house.  The person who has the 'problem' is tech savvy, and is using VPN
>>>> Services.  Is there any way to block someone like this?  I'm guessing any
>>>> content filtering wouldn't work because the VPN is terminating on the
>>>> computer behind the router.  Any sort of IP or DNS Block they would be able
>>>> to bypass.  Is there any way to stop a tech person from getting what they
>>>> want?  Right now our only thought is to put in like a 10k/s queue on their
>>>> connection during the overnight hours. Other options?
>>>>
>>>
>>>
>>

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Nate Burke]

That was my thought, there's always a way around. Where there's a will, 
there's a way.


On 1/4/2016 9:50 AM, Josh Reynolds wrote:


He can probably shift quite a few ports/methods around, or create vpns 
he controls to amazon., etc. Or Tor. Etc etc for every solution you 
come up with, there's a way around it.


Also, this is a social/hr "issue". Treat it as such.

On Jan 4, 2016 9:45 AM, "Josh Luthman" > wrote:


VPN hides the traffic, so anything in it is getting through. 
Could you do 1kbps for all VPN traffic?


Block porn with opendns and drop DNS to anything else?

Josh Luthman
Office: 937-552-2340 
Direct: 937-552-2343 
1100 Wayne St
Suite 1337
Troy, OH 45373

On Jan 4, 2016 10:42 AM, "Nate Burke" > wrote:

We're dealing with a customer who is trying to block porn from
their house.  The person who has the 'problem' is tech savvy,
and is using VPN Services.  Is there any way to block someone
like this?  I'm guessing any content filtering wouldn't work
because the VPN is terminating on the computer behind the
router.  Any sort of IP or DNS Block they would be able to
bypass.  Is there any way to stop a tech person from getting
what they want?  Right now our only thought is to put in like
a 10k/s queue on their connection during the overnight hours. 
Other options?

Re: [AFMUG] Blocking Tech Savvy person from Porn

[Josh Luthman]

Which does nothing for ptp or bittorrent.  Certainly doesn't apply to
someone using a VPN.


Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373

On Mon, Jan 4, 2016 at 11:44 AM, Rory Conaway <r...@triadwireless.net>
wrote:

> Barracuda Web Filter.
>
>
>
> Rory
>
>
>
> *From:* Af [mailto:af-boun...@afmug.com] *On Behalf Of *Jaime Solorza
> *Sent:* Monday, January 4, 2016 9:30 AM
> *To:* Animal Farm
> *Subject:* Re: [AFMUG] Blocking Tech Savvy person from Porn
>
>
>
> We used Lightspeed solutions at district but pricey.Untangle is free
> and full version is low cost..
>
> On Jan 4, 2016 8:42 AM, "Nate Burke" <n...@blastcomm.com> wrote:
>
> We're dealing with a customer who is trying to block porn from their
> house.  The person who has the 'problem' is tech savvy, and is using VPN
> Services.  Is there any way to block someone like this?  I'm guessing any
> content filtering wouldn't work because the VPN is terminating on the
> computer behind the router.  Any sort of IP or DNS Block they would be able
> to bypass.  Is there any way to stop a tech person from getting what they
> want?  Right now our only thought is to put in like a 10k/s queue on their
> connection during the overnight hours.  Other options?
>