Orbi WiFi 7 RBE973
Reply

Re: Blocking TeamViewer, LogMeIn, GoToMyPC, etc....

Noctaire
Aspirant

Blocking TeamViewer, LogMeIn, GoToMyPC, etc....

I need to block remote access services, specifically starting with TeamViewer but also looking at LogMeIn, GoToMyPC, and so forth.

 

Has anyone been successful at blocking these services?  Can you chart out how you did it?  At the moment, I'm working on TeamViewer and here's the current strategy:

 

1) Ensure everyone is using internal DNS.

2) Block TCP/UDP 53 outbound from the network (except for internal DNS, of course).

3) Block "TeamViewer.Com".

4) Block port 5398, both directions (TeamViewer's normal port of operation).

5) Block IP range 178.77.120.0/24.

Model: FVS336Gv2|PROSAFE DUAL WAN GIGABIT FIREWALL WITH SSL & IPSEC VPN
Message 1 of 5
JohnRo
NETGEAR Employee Retired

Re: Blocking TeamViewer, LogMeIn, GoToMyPC, etc....

Hello Noctaire, 

 

Welcome to the community! 

 

I have listed down my answers to your question, please see below:

 

  1. I am not sure if there is a way to check it on the router (but I'll try to inquire to our engineers). If there is not a lot of users, you may want to check if they DNS are obtained automatically. 
  2. Create an outbound rule, Security>Firewall Rules>Outbound Services.
  3. Add TeamViewer.com on tbe "Blocked Keywords" table, Security>Block Sites.
  4. Create an inbound and outbound rule, Security>Firewall Rules.
  5. Do you want to block this IP range on all services? 

Click here for reference. Go to chapter 6. 

 

Let me know if you have questions. 

 

Thanks,

Message 2 of 5
Noctaire
Aspirant

Re: Blocking TeamViewer, LogMeIn, GoToMyPC, etc....

Thanks for the reply, JohnRo.

 

I've done all but the DNS and content filter blocks I mention; I need to get another DNS server in place besides the proxy DNS on the firewall so I can properly manage those.

 

Do you (or anyone else) have any other suggestions for blocking these remote access services?

Message 3 of 5
JohnRo
NETGEAR Employee Retired

Re: Blocking TeamViewer, LogMeIn, GoToMyPC, etc....

Hi Noctaire, 

 

I apologize I misunderstood you post. Did you try using the content filter blocks by the way? I have read through various threads online and have seen that the best way is to use the DNS proxy. 

 

Thanks, 

 

 

Message 4 of 5
DaneA
NETGEAR Employee Retired

Re: Blocking TeamViewer, LogMeIn, GoToMyPC, etc....

Hi Noctaire,

 

We’d greatly appreciate hearing your feedback letting us know if the information I’ve provided has helped resolve your concern or if you need further assistance.  If ever your concern has been resolved, I encourage you to mark the appropriate reply as the “Accepted Solution” so others can be confident in benefiting from the solution. The NETGEAR Community looks forward to hearing from you and being a helpful resource in the future!

 


Regards,

 

DaneA

NETGEAR Community Team

Message 5 of 5
Top Contributors
Discussion stats
  • 4 replies
  • 5989 views
  • 0 kudos
  • 3 in conversation
Announcements