Prevents lateral movement across the corporate network during a remote session.
The is an integrated network security layer that sits between the AnyDesk service and the operating system’s network stack. Unlike traditional firewalls that manage general internet traffic, the AnyDesk Firewall is context-aware. It filters traffic based specifically on the identity of the connecting device, the geographical origin of the request, and the specific permissions granted to the session, providing a zero-trust security posture for remote access. anydesk firewall
Click OK and restart your computer to apply the new networking rules. Advanced Security: Whitelisting and Access Control It filters traffic based specifically on the identity
| | Required Rules | |--------------|--------------------| | Outbound-only (typical client) | Allow TCP 443, TCP 80, UDP 50000–60000 outbound to AnyDesk domains/IPs. | | Inbound direct access | Forward TCP 7070 to target device; allow UDP 50000–60000 inbound. | | Highly restrictive network | Allow only TCP 443 outbound; performance may degrade (relay-only mode). | | Local LAN only | Allow TCP 7070 and UDP range on LAN interfaces; block to WAN if desired. | | | Inbound direct access | Forward TCP
By following these guidelines, you can ensure secure and reliable remote access to computers using AnyDesk.
Configuring a firewall for AnyDesk requires understanding its hybrid connection model: outbound HTTPS for signaling and relay, plus optional UDP ports for direct P2P performance. In most environments, allowing is sufficient for basic functionality, while adding UDP 50000–60000 significantly improves speed and responsiveness. For maximum security, whitelist AnyDesk’s specific domains and IP ranges, avoid SSL inspection of its traffic, and regularly review rules for changes. Proper configuration ensures seamless remote access without compromising network security.