Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 6611 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Need to allow TightVNC

Christopher Moss1

Hey Guys, I have 40 machines that need to have ports 5800 and 5900 open. My issue is that the Web policy "Default Workplace Policy" that i am using is blocking tightvnc and even after turning off all the rules within the default workplace web policy it dose not work, but if i set the web policy to none it works. Any idea what could cause this. I do not want to set all machines with a static.



This thread was automatically locked due to age.
Parents
  • 0

    Christopher,

    Many of us have that same issue.  For me, turning off all the rules in the Default Workplace Policy still blocks something that affects a couple of iOS apps on my Apple devices.  Turning off the Default Workplace Policy solves the problem.  If you need those rules, you can easily recreate them in a new web policy.

    Otherwise, TightVNC and all other applications are allowed or denied in the Application policies.  Tight VNC is either a Risk Level 4 or a Risk Level 5 application.

  • 0 in reply to David Birdsall

    David,

     

    Could this be a bug as i have tried creating my own policy and it still blocks the tightvnc app. Seems to me that when any web policy is enabled it messes with something with the way some apps are communicating. Even with the web policy set to allow all it still blocks tightvnc. Only way to solve is to either as you say turn off the policy or i would have to make PC's static and create rule. And sine its a issue with many might be something for sophos to look into.

  • 0 in reply to Christopher Moss1

    In the Firewall Policy, do you have Decrypt and Scan unchecked?

    Are all Application policies turned off?  (for testing purposes)

     

    Can you post a photo of your firewall policy?

  • 0 in reply to David Birdsall

    With the Application control on but web policy off it works.

Reply Children
  • 0 in reply to Christopher Moss1

    I do have VNC access allowed in my application policy.

     

  • 0 in reply to Christopher Moss1

    Christopher,

    I see that decrypt and scan is off, so that issue is eliminated.  Google QUIC is probably not the issue, but you could try it.

    Christopher Moss1 said:
     With the Application control on but web policy off it works.

    There is still a possibility that a setting in the Web section could be causing the problem with the Web Policy.

    At this point, you would have to go to your Firewall log and see if there is information on what policy or setting blocked the VPN.

    You may also want to check: [Macintosh HD] > Library > Logs > Sophos Anti-Virus and see if there are any error logs there too.