Hello,
TeamViewer is a computer software package for remote control, desktop sharing, and file transfer between computers. By default it connects to primary servers to gather a list of local servers. The application then establishes a connection to the local server. To block TeamViewer, it is recommended that these primary servers are blocked through the proxy. The primary servers are usually in the format of 'http://master[#].teamviewer.com/', where '#' can be any number.
Blocking access to 'teamviewer.com' alone should prevent the TeamViewer application to work through the Cisco IronPort Web Security Appliance.
Recommended address to create for TeamViewer in the custom URL category:
.teamviewer.com, dyngate.com, 70.38.37.232, 85.214.118.112, 85.214.138.185, 85.25.146.182 , 93.189.33.205
Click Advanced and in the Regular Expressions field, add the following:
din\.aspx
dout\.aspx
Include the custom URL category to your Access Policy and set it to 'Block'