RE: [fw-wiz] Blocking Kazaa
From: Jeff Falgout (JFalgout_at_co.jefferson.co.us)
Date: 06/27/03
- Previous message: Boni Bruno: "[fw-wiz] Re: Blocking Kazaa"
- Maybe in reply to: Dante Fressone: "[fw-wiz] Blocking Kazaa"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <firewall-wizards@honor.icsalabs.com> Date: Fri, 27 Jun 2003 12:33:39 -0600
>>> James Cutter <JamesCutter@thedoghousemail.com> 6/25/2003 11:31:44 PM
>>>
PIX can't do this. Other Cisco gear can't as well.
There is a Peer to Peer firewall from Akonix (http://www.akonix.com/ )
that you can use.
another option that you might want to try is checkpoint NG (starting at
FP3) that can block Peer-to-Peer (including kazaa) applications
traversing the firewall on port 80.
Original message:
Hi, I want to block kazaa from my pix fw blocking port 1214 TCP, but it
seems like it's using port 80 now,,,,and I can't drop that port because
web wont work.....
Any ideas?
>>>>>>>>>>>>>>>>>>>>>>
I've seen posts on other mailing lists suggesting opening up port 1214,
yet throttling it down to the slowest speed possible.
The thought is that Kazaa first tries to connect on port 1214 if that
connection is refused, it jumps around and usually ends up on 80.
Yet if you allow the first connection to be successful it won't switch
ports. As the users start to download, the connection slows to a crawl.
It may allow Kazaa to work, but it sure won't be an enjoyable product
Haven't tried it personally though, so YMMV
Jeff
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Boni Bruno: "[fw-wiz] Re: Blocking Kazaa"
- Maybe in reply to: Dante Fressone: "[fw-wiz] Blocking Kazaa"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
