How to block VPN connections?

Hi All,
Don’t know if this is the right sub to ask this, but I’ll ask anyway.
I use PiHole and have access to my router settings. My router firmware doesn’t give the ability to block VPN connections on its own.
I would like stop users on my network connecting to any VPN.
What is a way that this can be implemented?

I noticed that my work rolled out this recently, where I can connect to a VPN using an app (app will say connected), but it doesn’t let any queries go through unless I disconnect VPN. I am trying to implement the same. Even, not allowing the VPN to connect would be good enough for me

I dont think pihole will do this since vpns can connect via ip addresses. Your firewall will need to do this and each firewall is different.

You can block specific ports in your router firewall that are used for standard protocols. Just Google VPN port list or similar. It won’t stop everything but most of it probably.

Curious to know why you are trying to block users from connecting to vpn.

You can’t.
If it’s on port 443 how do you sort VPN from normal Https?

Read here:

If it’s a public VPN it’s easier to block the IP used but private VPN is impossible as you find any lists including them.

Currently, I use this block list for that purpose:
https://github.com/hagezi/dns-blocklists?tab=readme-ov-file#bypass

It works reasonably well, but keep in mind it’s not a perfect system, the best is as others are saying to do filtering on the router firewall to block possible VPN traffic.

you do that on your firewall not on your dns server

children accessing porn? i can think of dozens of reasons right now

Currently, I use this block list for that purpose:
https://github.com/hagezi/dns-blocklists?tab=readme-ov-file#bypass

This is very helpful. I’ll try it out. Thanks Mate!