how to block teamviewer?

Toiletbowl · July 17, 2014, 7:47am

Hi to all

i would like to know if possible to block teamviewer application?

thanks

dynek · July 17, 2014, 8:30am

Yes it is.

Caci99 · July 17, 2014, 10:17am

I don’t think it is possible to do it through firewall filter since teamviewer uses port 80 and 443. So I would go by adding static entries in dns, and redirecting dns requests to the router:

/ip dns static
add name="teamviewer.com" address=127.0.0.1 ttl=1d

Phaere · July 17, 2014, 12:08pm

Just block 178.77.120.0/24 dst subnet if forward chain for src address, that shouldn’t have access.

Thalid · July 17, 2014, 1:28pm

been googeling this subject myself and the stuff people talks of is useing squid and Ids

RogerWilco · July 17, 2014, 11:12pm

Why would you want to block it?

Toiletbowl · July 18, 2014, 1:49am

hi roger

due of company policy thanks guys your prompt response gonna try this if this TV wont pass through via 443.

thanks

Toiletbowl · July 18, 2014, 2:00am

Caci99:

Toiletbowl:

Hi to all

i would like to know if possible to block teamviewer application?

thanks

I don’t think it is possible to do it through firewall filter since teamviewer uses port 80 and 443. So I would go by adding static entries in dns, and redirecting dns requests to the router:
/ip dns static
add name="teamviewer.com" address=127.0.0.1 ttl=1d

hi caci

the redirecting to router teamviewer.com it works but adding www. it passthrough and it seems working now the teamviewer application doesn"t handshake

102 ;;; teamviewer_deny
chain=forward action=drop src-address=178.77.120.0/24
in-interface=all-etherne

myron

Toiletbowl · July 18, 2014, 2:25am

Toiletbowl:

Caci99:
Toiletbowl:

Hi to all

i would like to know if possible to block teamviewer application?

thanks

I don’t think it is possible to do it through firewall filter since teamviewer uses port 80 and 443. So I would go by adding static entries in dns, and redirecting dns requests to the router:
/ip dns static
add name="teamviewer.com" address=127.0.0.1 ttl=1d
hi caci

the redirecting to router teamviewer.com it works but adding www. it passthrough and it seems working now the teamviewer application doesn"t handshake >>> ;;; teamviewer_deny chain=forward action=drop src-address=178.77.120.0/24 in-interface=all-ethernet

but if i block specific port let say office at port2/ether2 (src-address=178.77.120.0/24 in-interface=office) it doesnt work ehhhh…

myron

RogerWilco · July 18, 2014, 3:24am

Ahh, right. Thought it was odd why an individual or household would want to.

sias · March 20, 2019, 2:36pm

TeamViewer prefers to make outbound TCP and UDP connections over port 5938 – this is the primary port it uses, and TeamViewer performs best using this port.

script for address marking
/ip firewall filter
add chain=forward action=add-dst-to-address-list comment=“learn the addresses” protocol=tcp address-list=TeamviewerServers address-list-timeout=none-static dst-port=5938

script for drop trafic for address-list
/ip firewall filter
add action=drop chain=forward comment=“Drop all traffic from address on TeamviewerServers” src-address-list=TeamviewerServers
add action=drop chain=forward comment=“Drop all traffic from address on TeamviewerServers” dst-address-list=TeamviewerServers
add action=drop chain=input comment=“Drop all traffic from address on TeamviewerServers” src-address-list=TeamviewerServers

anav · March 20, 2019, 5:39pm

COMPANY POLICY
Accessing TeamViewer First Time - Warning
Accessing TeamViewer Second Time - Second Warning and Counselling
Accessing TeamViewer Third Time - Third and Final Warning (and Fine)
Accessing TeamViewer Last time - Fired.

Problem solved.

( You cannot stop idiots, you can only get rid of them)

dkorzhevin · July 22, 2019, 11:11am

Hi,

Does this solution still applicable?