How to exclude tightvnc from Risk or High Risk application list

Question

Hello All, 
 I have added the "Block high risk (Risk level 4 and 5) apps" to the " Identify and control applications (App control)" part of Lan-To-Wan Firewall rule. 
 With this in the La-To-Wan firewall rule, I can not connect to a remote computer, using TightVnc and a specifik IP no. As soon as I remove "Block high risk (.." from the firewall rule, I can access the external computer with TightVnc. 
 I have tried to create an Application Filter, based on the "Block high risk (Risk Level 4 and 5) apps" application list, and wanted to add an exclusion for TightVnc to allow that, but TightVnc do not exist as a named application, and consequently have not succeded. 
 Could anybody help me with this ? How do I create an Application list, blocking all Risk and High Risk applications, but allowing only TightVnc ? 
 Best regards 
 Soren Jensen

Vivek Jagad · Accepted Answer

Hi Søren Jensen , Thank you for reaching out to the community, you can try adding an exception - ^https?://([A-Za-z0-9.-]*\.)?www\.tightvnc\.com/ tightvnc runs on ports 5900 and 5800 by default. verify with the command in the client machine: netstat -an | find "ESTABLISHED" | find ":5900 " If this two ports are open and not filtered, you'll be able to make it work.

Mayur Makvana · Answer

Hello, 
 You may create the destination-based rule to with the destination FQDN/IP addresses of TightVNC and the ports used and keep the existing rule to block the High Risk application.

How to exclude tightvnc from Risk or High Risk application list

Top Replies