11-20-2025 12:00 PM
Hey,
I have a need to block all internet traffic at a specific site.
I have created specific policies to allow needed services,
and at the bottom of the policy, I have added a drop all.
I have created a URL category for *.net.anydesk.com
and allowed the ports according to this URL
https://support.anydesk.com/docs/firewall
but traffic from clients using Anydesk gets the drop policy.
I understand that it is something related to the fact that the header do not have the SNI. as the traffic is incripted by anydesk client.
But if I want to allow the trafic using application ID, it allows 443 and that will allow user to go on the WEB with 443 and I cannot allow it.
Will appriciate any help or ways to aproach this.
Thanks.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
