Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2183
  • Last Modified:

How to block teamviewer on the network

I would like to block teamviewer in the network.

Is there any clear procedure to do it with ASA 5540 or Symantec EndPoint Manager 12.2

Thank you for any feedback
0
Ometa
Asked:
Ometa
1 Solution
 
artsecCommented:
ASA 5540 is not able to block based on Application. Further, Teamviewer works on application layer and you cannot block HTTPS by ASA 5540 because it does not support SSL decryption .

Here you can find information for application control on Symantec EndPoint Manager.
http://www.symantec.com/business/support/index?page=content&id=TECH102525&locale=en_US
0
 
Michael-BestCommented:
0
 
Giovanni HewardCommented:
You can start by blocking 5938/TCP outbound.  

TeamViewer will eventually use 443/TCP and 80/TCP, so you'll need to block by IP address or FQDN.

Due to the large IP/domain space used by TeamViewer, this may be an arduous process of monitoring its outbound connection attempts over time.  Use TCPView on a local Windows host to easily monitor connection attempts.  Of course if you're comfortable with WireShark you can filter these ports and log attempts over time.

Start by resolving master1.teamviewer.com incrementally upward (master2.teamviewer.com, etc.)
0
 
McKnifeCommented:
Is the topic still alive? http://www.symantec.com/connect/forums/block-teamviewer holds a HowTo for SEP 12.3 at least.
0
 
madunixChief Information Security Officer Commented:
As said above, I would block port 5938, that should stop the initial handshake.
0

Featured Post

Lessons on Wi-Fi & Recommendations on KRACK

Simplicity and security can be a difficult  balance for any business to tackle. Join us on December 6th for a look at your company's biggest security gap. We will also address the most recent attack, "KRACK" and provide recommendations on how to secure your Wi-Fi network today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now