Hello, can admin still see your browser history when you connect to network with watchguard t20 (need company account to connect) while you using vpn in this case I using Ultrasurf VPN, in using phone btw
If your ultra VPN does full tunneling and you’re not using the local network 's DNS servers, admin shouldn’t be able to see what you’re hiding.
Any traffic passing through the VPN is logged (level of logging varies based on settings). So if the traffic doesn’t go to the T20 they don’t know about it.
Two ways of setting up the VPN on the WG, routed (only certain traffic goes through VPN) and full VPN (all traffic through VPN). This is part of the setup, and you’d see in the client (probably more PC than mobile I think) once you connect, what the published routes are.
Bear in mind that if the VPN policy has a georestriction, you may not even be able to connect in the first place (if the VPN is putting you in the UK, and the VPN only allows the USA).
As a sysadmin we don’t care unless we are told to dig by management. Pro tip, we have better logs than you.
I’m surprised that the watch guard allows you to use a VPN.
The DNS Watch feature logs ALL DNS traffic, regardless of what DNS provider you use. The Watchguard is “smart” enough to proxy all (including VPN) traffic through it. So if they have a DNS Proxy configured (it comes with the TSS license), they can see you VPN traffic. (at least the source, destination and user name).
Most companies (as it’s the default policy on Watchguard) have Full Tunneling by default, so all traffic goes through the T20, if you are connected to it via VPN. If you are behind the firewall (inside the network with the T20 as default gateway/route) then yes, the T20, even if connected to a 3rd party VPN, can see you the traffic (if they have a DNS Proxy setup). Also it sounds like they have Application Control on, but somehow your Ultrasurf can get through, for now.
So… Technically, they still can see the browser history, even when I use vpn?
Yeah me too, I can only use certain VPN, for example Ultrasurf vpn
Depends, but there is probably something in a log somewhere giving your VPN usage away. It might not be down to the access x site at y time though. It might be just ‘VPN traffic x from y’ which would be enough to cause further digging. You don’t want that.