Hello, for example, I am blocking Teamviewer traffic via Application Control however I have noticed that simply web browsing to teamviewer.com is also blocked via this Application Control.
Is there any way to only block actual Teamviewer installations attempting to connect to Teamviewer servers i.e. I am not concerned about people simply web browsing to Teamviewer.com.
Perhaps it can be differentiated by user agent somehow i.e. block user agent 'teamviewer application' but allow user agent 'web browser' ?
Thank you kindly.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello fran,
Yes, it is possible to do so. With a custom application control signature to whitelist ".teamviewer.com", you can allow the web page and block the connection protocol.
Try adding this custom application control signature and set it to Monitor. I am providing you with the latest IPS Engine that supports whitelisting for custom signature.
F-SBID( --name "TeamViewer.Webpage_Custom"; --protocol tcp; --service SSL; --pattern "teamviewer."; --context host; --no_case; --app_cat 12; --weight 100; )
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1734 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.