Hi there,
we would like to block all application but allow teamviewer.Since the teamviewer is using https session, so it gets blocked also.Currently we are whitelisting the IP of the teamviewer but I guess it not the best way to do it since the IP of the teamviewer will be changing from time to time and apart from that it could use the nearest server location of the team viewer. so is there any alternative way to do it?
Block https but allow teamviewer
Moderators: imfirewall, gengw2000
-
imfirewall
- Posts: 153
- Joined: Fri Nov 26, 2010 7:41 am
Block https but allow teamviewer
Teamviewer gets blocked because it uses https(443) port. To get it work with https whitelist, please follow below steps to define a teamviewer protocol, so WFilter will be able to seperate it from https.
1. Open "Customize Protocols", new a customer protocol input name, desc and type.
2. add two pattern:
pattern content for team_tcp01:^x17x24[x00-xff]{2}x00
pattern content for team_tcp02:^^x11x30[x00-xff]x00
Then save settings.
3. Open "Blocking Levels", new a strategy named teamviewer, in "Files" you can see "Block teamviewer". Block all but don't check "Block teamviewer". Then save settings and use this strategy to the computer.
4. All application are blocked but allow teamviewer of this computer.
1. Open "Customize Protocols", new a customer protocol input name, desc and type.
2. add two pattern:
pattern content for team_tcp01:^x17x24[x00-xff]{2}x00
pattern content for team_tcp02:^^x11x30[x00-xff]x00
Then save settings.
3. Open "Blocking Levels", new a strategy named teamviewer, in "Files" you can see "Block teamviewer". Block all but don't check "Block teamviewer". Then save settings and use this strategy to the computer.
4. All application are blocked but allow teamviewer of this computer.
Who is online
Users browsing this forum: No registered users and 28 guests