Welcome to ISAserver.org

blocking teamviewer

Users viewing this topic: none

Logged in as: Guest

Printable Version

All Forums >> [ISA 2006 Firewall] >> HTTP Filtering >> blocking teamviewer

Page: [1]

Message

<< Older Topic Newer Topic >>

blocking teamviewer - 27.Sep.2009 5:50:03 PM

modather

Posts: 11
Joined: 13.May2009
Status: offline

I did not find Teamviewer Signature
H ow Ican block teamviewer ??

Post #: 1

Featured Links*

RE: blocking teamviewer - 28.Sep.2009 12:26:02 AM

richardhicks

Posts: 477
Joined: 20.Jan.2009
From: Southern California
Status: offline

I'm not familiar with Teamviewer at all, but if it uses ports other than 80 and/or 443 you can simply block that traffic (or not allow it in the first place and let the default deny rule drop it). If it uses port 80 you will need to use a protocol analyzer (e.g. Network Monitor or Wireshark) and observe the traffic for something unique to the communication that you can filter on (most often this is the user-agent request header). If it uses port 443 you will need to employ a third-party filter to perform forward SSL inspection (on ISA, TMG will include this by default).

_____________________________

Richard Hicks - Forefront MVP
http://tmgblog.richardhicks.com/
http://directaccess.richardhicks.com/

(in reply to modather)

Post #: 2

RE: blocking teamviewer - 29.Sep.2009 9:59:06 AM

modather

Posts: 11
Joined: 13.May2009
Status: offline

I can not find signature of team viewer , kindly help me

Application name :
Location :
HTTP header :
Signature :

thanks

(in reply to modather)

Post #: 3

RE: blocking teamviewer - 26.Oct.2009 11:40:57 AM

pierreasdf

Posts: 21
Joined: 22.Aug.2008
Status: offline

We have blocked this here:

- signature containing 'DynGate' (HTTP Header, User-Agent)
- url containing 'dyngate' (just to make sure ...)
- domain Teamviewer.com (to prevent acces to the Web access method at login.teamviewer.com)

Hope this help.

(in reply to modather)

Post #: 4

RE: blocking teamviewer - 19.Jul.2010 6:13:33 PM

johnsmith12

Posts: 3
Joined: 15.Jul.2010
Status: offline

I'm in the same boat. But mine situation is to allow a one way connection. I want my folks to be able to control the customer's PC to assist the customer in fixing their problem.

Teamviewer, in my opinion, is a good/light application to use. But not being able to control the traffic is a problem for us.

(in reply to modather)

Post #: 5

RE: blocking teamviewer - 26.Jul.2010 6:39:45 AM

markobgd2002

Posts: 1
Joined: 26.Jul.2010
Status: offline

Hi,

I've try all I could find on the net. This is what I have done:

I've made address range from 87.230.73.0 - 87.230.74.0

and New rule where I've denied access from all networks to this address range, and it works OK. I'm not getting ID and PASS when I open Teamviewer!

If someone have better idea, I'm open for conversation.

(in reply to johnsmith12)

Post #: 6

RE: blocking teamviewer - 27.Dec.2010 11:12:33 PM

lsjames

Posts: 30
Joined: 6.Apr.2007
Status: offline

please read this
http://forum.lanctrl.com/viewtopic.php?f=10&t=484

you can block teamviewer by port and urls.

_____________________________

James King
Microsoft Certified Systems Engineer
Free Traffic Monitor Software

(in reply to markobgd2002)

Post #: 7

RE: blocking teamviewer - 28.Mar.2011 12:40:46 PM

faen

Posts: 1
Joined: 28.Mar.2011
Status: offline

hi do not speak English, I solved it as follows:
in the navigation rule with a exceptions add a url set:
http:// *. dyngate.com / *
http:// *. teamviewer.com / *
so far has worked.

(in reply to lsjames)

Post #: 8