How to block teamviewer on the network

Posted on 2013-12-07
Medium Priority
Last Modified: 2014-12-22
I would like to block teamviewer in the network.

Is there any clear procedure to do it with ASA 5540 or Symantec EndPoint Manager 12.2

Thank you for any feedback
Question by:Ometa

Expert Comment

ID: 39703182
ASA 5540 is not able to block based on Application. Further, Teamviewer works on application layer and you cannot block HTTPS by ASA 5540 because it does not support SSL decryption .

Here you can find information for application control on Symantec EndPoint Manager.
LVL 34

Expert Comment

ID: 39703185
LVL 15

Accepted Solution

Giovanni Heward earned 2000 total points
ID: 39703295
You can start by blocking 5938/TCP outbound.  

TeamViewer will eventually use 443/TCP and 80/TCP, so you'll need to block by IP address or FQDN.

Due to the large IP/domain space used by TeamViewer, this may be an arduous process of monitoring its outbound connection attempts over time.  Use TCPView on a local Windows host to easily monitor connection attempts.  Of course if you're comfortable with WireShark you can filter these ports and log attempts over time.

Start by resolving master1.teamviewer.com incrementally upward (master2.teamviewer.com, etc.)
LVL 58

Expert Comment

ID: 39745417
Is the topic still alive? http://www.symantec.com/connect/forums/block-teamviewer holds a HowTo for SEP 12.3 at least.
LVL 26

Expert Comment

by:Fadi SODAH (aka madunix)
ID: 40073161
As said above, I would block port 5938, that should stop the initial handshake.

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

I've been an avid user and supporter of Malwarebytes Premium Version 2.x for years. It's an excellent product that runs alongside just about any Anti-Virus application without issues. It seems to have an uncanny ability to pick up many things that A…
A new hacking trick has emerged leveraging your own helpdesk or support ticketing tools as an easy way to distribute malware.
Watch the video to know how one can repair corrupt Exchange OST file effortlessly and convert OST emails to MS Outlook PST file format by using Kernel for OST to PST converter tool. It can convert OST to MSG, MBOX, EML to access them. It can migrate…
Did you know PowerShell can save you time with SaaS platforms? Simply leverage RESTfulAPIs to build your own PowerShell modules. These will kill repetitive tickets and tabs, using the command Invoke-RestMethod. Tune into this webinar to learn how…

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question