RE: p2p and ISA

From: Mark Challender (MarkC_at_mtbaker.wednet.edu)
Date: 05/06/03

Next message: Jason Beauford: "RE: p2p and ISA"

Previous message: Ahmed Baig: "RE: p2p and ISA"
Maybe in reply to: Edward Smith: "p2p and ISA"
Next in thread: Jason Beauford: "RE: p2p and ISA"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: focus-ms@securityfocus.com
Date: Tue, 6 May 2003 13:11:22 -0700

A tool we use for managing our bandwidth is Packeteer's Packetshaper. With
just a few clicks we can give certain applications a little bit of bandwidth
or totally discard the packets and prevent the use of applications on the
web.

Stopping AIM, MS IM, or any of the P2P is an easy matter. Bandwidth is then
available for truly educational use.

Mark Challender
Network Administrator

Are you sending out a virus hoax?
Check the website below and be sure
you are not perpetuating a scam or other hoax.

http://vil.nai.com/VIL/hoaxes.asp

-----Original Message-----
From: Lucas Zaichkowsky [mailto:Lucas@dnsys.com]
Sent: Tuesday, May 06, 2003 9:18 AM
To: Edward Smith; focus-ms@securityfocus.com
Subject: RE: p2p and ISA

You're correct by saying that it's not enough to block ports. These file
sharing programs are intentionally designed to make it very difficult to
block them. Instant Messaging software can be just as difficult. For
example, I had to block a list of a few dozen IP addresses to stop users
from using Yahoo Messenger since it connects over port 80 and has a very
long list of servers to try.

Check out this newsgroup posting by Jeff Middleton for some advice.
http://groups.google.com/groups?hl=en&lr=&ie=UTF-8&oe=UTF-8&safe=off&selm=up
rBFS0vCHA.2544%40TK2MSFTNGP11&prev=/groups%3Fnum%3D100%26hl%3Den%26lr%3D%26i
e%3DUTF-8%26oe%3DUTF-8%26safe%3Doff%26q%3Dkazaa%2Bblocking%2Bfirewall

-Lucas

-----Original Message-----
From: Edward Smith [mailto:esmith@cerebix.com]
Sent: Monday, May 05, 2003 9:50 PM
To: focus-ms@securityfocus.com
Subject: p2p and ISA

Greetings everyone,

My apologies if this is not the correct forum for this posting. I work for

a small shop running MS ISA. Has anyone successfully blocked inbound &

outbound p2p file sharing (Kazaa, Morpheus, etc) using ISA? It's not

enough to configure rules blocking port 1214 in and out as I've been

reading in other forums. I would appreciate any suggestions any of you may

have for how to do this either through the list or via offlist reply.

Thanks in advance.

----------------------------------------------------------------------------
-
FastTrain has your solution for a great CISSP Boot Camp. The industry`s most

recognized corporate security certification track, provides a comprehensive
prospectus based upon the core principle concepts of security. This ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on
utilization
of pertinent security tools. For a limited time you can enter for a chance
to win one of the latest technological innovations, the SEGWAY HT.
Log onto http://www.securityfocus.com/FastTrain-focus-ms
----------------------------------------------------------------------------

--
----------------------------------------------------------------------------
-
FastTrain has your solution for a great CISSP Boot Camp. The industry`s most
recognized corporate security certification track, provides a comprehensive 
prospectus based upon the core principle concepts of security. This ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on
utilization 
of pertinent security tools. For a limited time you can enter for a chance 
to win one of the latest technological innovations, the SEGWAY HT. 
Log onto http://www.securityfocus.com/FastTrain-focus-ms
----------------------------------------------------------------------------
--
-----------------------------------------------------------------------------
FastTrain has your solution for a great CISSP Boot Camp. The industry`s most 
recognized corporate security certification track, provides a comprehensive 
prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization 
of pertinent security tools. For a limited time you can enter for a chance 
to win one of the latest technological innovations, the SEGWAY HT. 
Log onto http://www.securityfocus.com/FastTrain-focus-ms
------------------------------------------------------------------------------

Next message: Jason Beauford: "RE: p2p and ISA"

Previous message: Ahmed Baig: "RE: p2p and ISA"
Maybe in reply to: Edward Smith: "p2p and ISA"
Next in thread: Jason Beauford: "RE: p2p and ISA"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: analyzing packets
... Ethereal should allow you view the entire packet, ... prospectus based upon the core principle concepts of security. ... of pertinent security tools. ... This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization ...
(Security-Basics)
Re: analyzing packets
... packets with tcpdump or etheral but from there I'm not sure what to do. ... prospectus based upon the core principle concepts of security. ... of pertinent security tools. ... This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization ...
(Security-Basics)
Re: GUIs for Win32 Snort?
... Do you Yahoo!? ... > recognized corporate security certification track, ... > of pertinent security tools. ... This ALL INCLUSIVE curriculum utilizes ...
(Security-Basics)
RE: LANguard vs Nessus
... prospectus based upon the core principle concepts of security. ... This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization ... of pertinent security tools. ... For a limited time you can enter for a chance ...
(Security-Basics)
RE: p2p and ISA
... allow the user to install the application. ... > recognized corporate security certification track, ... This ALL INCLUSIVE curriculum utilizes lectures, ... For a limited time you can enter ...
(Focus-Microsoft)