My scenario is Windows 2008 Server R2 “without AD”, and Windows 7 64bits at stations.
2 internet links into a TPlink dual wan routar as gateway setted by Server 2008 DHCP as 192.168.0.1
NethServer only as Proxy with 192.168.0.2 IP and setted at stations with 3128 port.
At TP link I blocked 80 and 443 ports for all stations excepting Proxy.
But some users using UltraSurf can access throught high ports like 60000 and others that I can’t preview.
Somebody can suggest me something that I can do, to block Ultrasurf without AD?