Threat Prevention - Endpoint works with most software, but there are instances when the specific VPN products/services are not compatible with our DNS filtering engine.
Below are the VPN products/services that have been discovered to cause incompatibilities with the DarkLayer Guard engine embedded in the Threat Prevention - Endpoint product:
- Always ON VPN - Always ON VPN routes all the DNS traffic through the VPN and for this reason, our DarkLayer Guard engine cannot reach the host machine's localhost address (127.0.0.1) on port 53;
- Azure VPN - the DarkLayer Guard engine intercepts the DNS queries via nslookup (because nslookup can use a specific DNS IP Address to resolve) but the browser does not know how to do that and does not work;
- GFI Transparent Proxy - GFI Proxy is mostly used in transparent proxy mode (the proxy server is placed between the local network and the internet). This means the endpoints are NOT configured to use a proxy. When Threat Prevention - Endpoint is installed on the machines, the traffic is filtered locally but it gets redirected through the same gateway GFI is using. This way the packets never reach DarkLayer Guard - Endpoint filtering engine and the requests effectively get resolved at the gateway level and not locally.