RE: p2p and ISA
From: Lucas Zaichkowsky (Lucas_at_dnsys.com)
Date: 05/06/03
- Previous message: Free, Bob: "RE: SuS update's"
- Maybe in reply to: Edward Smith: "p2p and ISA"
- Next in thread: Duston Sickler: "RE: p2p and ISA"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Edward Smith <esmith@cerebix.com>, focus-ms@securityfocus.com Date: Tue, 6 May 2003 11:18:07 -0500
You're correct by saying that it's not enough to block ports. These file
sharing programs are intentionally designed to make it very difficult to
block them. Instant Messaging software can be just as difficult. For
example, I had to block a list of a few dozen IP addresses to stop users
from using Yahoo Messenger since it connects over port 80 and has a very
long list of servers to try.
Check out this newsgroup posting by Jeff Middleton for some advice.
http://groups.google.com/groups?hl=en&lr=&ie=UTF-8&oe=UTF-8&safe=off&selm=up
rBFS0vCHA.2544%40TK2MSFTNGP11&prev=/groups%3Fnum%3D100%26hl%3Den%26lr%3D%26i
e%3DUTF-8%26oe%3DUTF-8%26safe%3Doff%26q%3Dkazaa%2Bblocking%2Bfirewall
-Lucas
-----Original Message-----
From: Edward Smith [mailto:esmith@cerebix.com]
Sent: Monday, May 05, 2003 9:50 PM
To: focus-ms@securityfocus.com
Subject: p2p and ISA
Greetings everyone,
My apologies if this is not the correct forum for this posting. I work for
a small shop running MS ISA. Has anyone successfully blocked inbound &
outbound p2p file sharing (Kazaa, Morpheus, etc) using ISA? It's not
enough to configure rules blocking port 1214 in and out as I've been
reading in other forums. I would appreciate any suggestions any of you may
have for how to do this either through the list or via offlist reply.
Thanks in advance.
----------------------------------------------------------------------------
-
FastTrain has your solution for a great CISSP Boot Camp. The industry`s most
recognized corporate security certification track, provides a comprehensive
prospectus based upon the core principle concepts of security. This ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on
utilization
of pertinent security tools. For a limited time you can enter for a chance
to win one of the latest technological innovations, the SEGWAY HT.
Log onto http://www.securityfocus.com/FastTrain-focus-ms
----------------------------------------------------------------------------
-- ----------------------------------------------------------------------------- FastTrain has your solution for a great CISSP Boot Camp. The industry`s most recognized corporate security certification track, provides a comprehensive prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization of pertinent security tools. For a limited time you can enter for a chance to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-focus-ms ------------------------------------------------------------------------------
- Previous message: Free, Bob: "RE: SuS update's"
- Maybe in reply to: Edward Smith: "p2p and ISA"
- Next in thread: Duston Sickler: "RE: p2p and ISA"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
