In our company we have two McAfee Web Gateways acting as proxy. I need to create a rule for detecting rdp over http and allow to a group of users. Apache Guacamole, google rdp (and some other tools) is what I want to control.
Any advice is helpfull.
I think you mean rdp over https. That should be hard. The first thing to do is to break TLS. But since RDP is not a web protocol the proxy will not recognize it. The only thing I can think of is to check for the target port or the user-agent string. However, this can all be modified.
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.