On 1/23/2013 3:32 PM, Ralf Hildebrandt wrote:
1358927965.305 90252 141.42.xxx.69 TCP_MISS/200 2711 CONNECT download.teamviewer.com:443 - HIER_DIRECT/46.163.100.220 -
1358928992.439 74 141.42.xxx.115 TCP_MISS/200 9 CONNECT ping3.teamviewer.com:443 - HIER_DIRECT/95.211.37.197 -
Idea:
acl teamviewer-ssl url_regex ^(master|ping)[0-9]+\.teamviewer\.com
http_access deny teamviewer-ssl
If you want to block teamviewer totally, dstdomain would be faster:
acl teamviewer dstdomain .teamviewer.com
http_access deny teamviewer
OK, I still want be able to access www.teamviewer.com :)
Then use dstdomain + CONECT method deny and allow dstdomain +
GET\POST|HEAD METHODS.
Eliezer
