Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

GoToMyPC

Dear All,

How could we deny access form the outside networks in order not to gain access to our internal PCs if the users try to use the GoToMyPC service?!!

regards..

Tamer Bayomy

1 ACCEPTED SOLUTION

Accepted Solutions
Gold

Re: GoToMyPC

Hi Tamer,

You'll need to block port 8200, GoToMyPC generates only outgoing HTTP/TCP to ports 80,443 and/or port 8200 and you can also stop 'poll.gotomypc.com' - sorry don't have the IP address but try doing nslookup for 'poll.gotomypc.com' to get the relevant IP address.

Read the following PDF document on this matter as well.

https://www.gotomypc.com/downloads/pdf/m/GoToMyPC_Personal_Security_White_Paper.pdf

Hope this helps and let me know how you get on.

Thanks - Jay

2 REPLIES
Gold

Re: GoToMyPC

Hi Tamer,

You'll need to block port 8200, GoToMyPC generates only outgoing HTTP/TCP to ports 80,443 and/or port 8200 and you can also stop 'poll.gotomypc.com' - sorry don't have the IP address but try doing nslookup for 'poll.gotomypc.com' to get the relevant IP address.

Read the following PDF document on this matter as well.

https://www.gotomypc.com/downloads/pdf/m/GoToMyPC_Personal_Security_White_Paper.pdf

Hope this helps and let me know how you get on.

Thanks - Jay

New Member

Re: GoToMyPC

Thanks Jay,

Dear All,

I found by several testes and after checking the link posted that the GoToMyPC server [service installed] always sends an outgoing HTTP "ping" to the GoToMyPC broker (poll.gotomypc.com) at regular intervals checking to see if any connect requests have been received.

So the solution to prevent the GoToMyPC broker from accessing our company’s computers is by blocking access to the host GoToMyPC Broker.

This will prevent anyone from starting a connection to access any computer inside our firewall [The protected LAN].

Name: poll.gotomypc.com

Address: 66.151.158.177

Using a simple outbound ACL will do the job,

Also, GoToMyPC will help us to block our Internet-visible IPs [Real IPs]. They already have a policy for companies who do not currently have GoToMyPC accounts but wish to block access using their Authorization Management Service, simply we have to send a request to the following email address: GoToSales@expertcity.com.

Regards..

Tamer Bayomy

265
Views
0
Helpful
2
Replies