One of my clients is a co-working space that provides Internet access to their members. Lately they have been having an issue where Google will block access to their search engine, Google Apps, etc. due to "unusual traffic" originating from my client's network.
The relevant Google help article here:
https:/
From my research online this could be caused by a rogue toolbar, SEO software, or malware on the network.
Now if this were a managed network we could scan for unauthorized software, enforce a malware policy, etc. But because there are hundreds of members of the general public coming in and out of this office space it is difficult if not impossible to enforce standards of that kind.
I have tried submitting Google's form to get unblocked, but never receive a response and the issue keeps recurring.
I am wondering if we could use a security appliance to somehow identify these "automated queries" originating from inside the network. Or possibly run a packet capture and get some more information about what node(s) the traffic is originating from.
I would appreciate any suggestions the community might have.