1. Making sure users access all files from the server2.Local disks are denied

1. 1. Making sure users access all files from the server
2.  
3. 2.Local disks are denied access(forced to work only on network drives)
4.  
5. 3.Disabling mass storage
6.  
7. 4.Implementing IPSec to block users from communicating with any other IP except the server IP and Firewall(cyberoam)
8.  
9. 5.Blocking as much sites as possible in cyberoam like file storage sites,mails etc.
10.  
11. 1.Ultrasurf
12.  
13. 2.Proxy sites
14.  
15. 3.And the biggest problem of them all, using android phones internet via mobile tethering to bypass cyberoam.