Dear Support,
I have whitelisted the above FQDN and the IP addresses, but we are still not able to connect.
I have attached wireshark to monitor the network traffic and this is what happens:
1. Open Teamviewer (TV)
3. Response from DNS server is 185.188.32.1
4. Connection is established with 185.188.32.1
5. After this connection is established, an additional IP request is attempted to 50.22.136.116
6. This is blocked by the firewall since no DNS query was made for a FQDN to match it with our address objects which are whitelisted.
7. This is requested a few times.
8. A few seconds later a request is made to 50.22.136.101
9. This is blocked by the firewall since no DNS query was made for a FQDN to match it with out address objects which are whitelisted
10. This is requested a few times
11. TV reports an error connecting.
As I mentioned in my original request (see below), the SonicWall firewall will process whitelisted objects of the form *.
teamviewer.com only if a DNS query is made for the FQDN. Therefore, even though a reverse-ip query of 50.22.136.116 produces
server18308.teamviewer.com, the firewall does not know that it belongs to *.
teamviewer.com since there was not a DNS query for
server18308.teamviewer.com prior to attempting to connect to the server.
As mentioned in my original request, would it be possible to force all of our machines to use the same servers so that we can whitelist those servers?
Bill
------------------------------------------------------------------
There is not a way to specify a single server.
If you are seeing the local keep alive servers then those are fine to add to the whitelist.