Block https but allow teamviewer

General discussion about WFilter ICF features, problems, configuration issues etc.

Moderators: imfirewall, gengw2000

nivpete
Posts: 2
Joined: Tue Oct 22, 2013 9:23 am

Block https but allow teamviewer

Postby nivpete » Tue Oct 22, 2013 9:30 am

Hi there,



we would like to block all application but allow teamviewer.Since the teamviewer is using https session, so it gets blocked also.Currently we are whitelisting the IP of the teamviewer but I guess it not the best way to do it since the IP of the teamviewer will be changing from time to time and apart from that it could use the nearest server location of the team viewer. so is there any alternative way to do it?

imfirewall
Posts: 153
Joined: Fri Nov 26, 2010 7:41 am

Block https but allow teamviewer

Postby imfirewall » Wed Oct 23, 2013 3:55 am

Teamviewer gets blocked because it uses https(443) port. To get it work with https whitelist, please follow below steps to define a teamviewer protocol, so WFilter will be able to seperate it from https.



1. Open "Customize Protocols", new a customer protocol input name, desc and type.



2. add two pattern:

pattern content for team_tcp01:^x17x24[x00-xff]{2}x00

pattern content for team_tcp02:^^x11x30[x00-xff]x00

Then save settings.



3. Open "Blocking Levels", new a strategy named teamviewer, in "Files" you can see "Block teamviewer". Block all but don't check "Block teamviewer". Then save settings and use this strategy to the computer.



4. All application are blocked but allow teamviewer of this computer.

Attached files


Return to “WFilter ICF”

Who is online

Users browsing this forum: No registered users and 11 guests