MSJoe
asked on
MUST block Hamachi
I need to block Hamachi! I dislike this program very much because I can't block it! I have reason to block it so I blocked ports 12975, 32976, 17771 that the LogMeIn site stated it used and it switched to 443 which I can't block because of normal web traffic. Any ideas?!?!? I could either make a DNS zone or host file that points something.hamahi.cc to the loop back address but that seems a little bit weak.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I am not sure about the 5.x.x.x subnet; as this is outbound traffic and Hamachi is designed to go on port 443 if the other regular ports are blocked there is no other concrete way to stop the traffic.
Also, as the filtering is not based on specific port but outbound IP, you would need to watch for the IP address changes.
Wg can resolve DNS but again it only stores the IP address obtained by name resolution and does not do namelookup always when a packet goes out. So, we are back to the ONLY solution.
Let me know if you need more details.
Thank you.
Also, as the filtering is not based on specific port but outbound IP, you would need to watch for the IP address changes.
Wg can resolve DNS but again it only stores the IP address obtained by name resolution and does not do namelookup always when a packet goes out. So, we are back to the ONLY solution.
Let me know if you need more details.
Thank you.
ASKER
I figured it was going to be some sort of solution like this. I don't like it, but I don't have a choice. I feel like this is a crazy piece of software. Anything that works this well or is this hard to keep from going out could be potentially dangerous.
/Sigh
/Sit
/Shakehead
Thanks for your help dpk_wal.
/Sigh
/Sit
/Shakehead
Thanks for your help dpk_wal.
Hamachi can a proxy to connect, so you must also block all the public proxies on the internet!
^^ not really, as if this is a work location, people could just have permissions assigned to not allow the changing of their computers settings.
ASKER