From: Long Kwok (lkwok@ccieunix.com)
Date: Sat Apr 30 2005 - 15:27:29 GMT-3
If you are stating , "How do you block yahoo messenger when they change
it to use port 80" I have done this in the past on IOS routers using
nbar , if you sniff a request from a yahoo messenger client you will see
it has a unique signature/url that is common to all conversations from
messenger client to server , using nbar on an ios router you can match
that common portion of the url and drop that traffic , I am not sure if
pix has facilities in the 6.x or lower code , but the new 7.x code may
as they now utilize mqc type structures and service-policies.
HTH , Long
-----Original Message-----
From: Kaiser Anwar [mailto:Kaiseranwar@sbcglobal.net]
Sent: Saturday, April 30, 2005 11:18 AM
To: ccielab@groupstudy.com
Subject: best way to block msn and yahoo messenger on pix firewall
Hi,
Some of these messengers use port 80, if they can't find the designated
port. Is there another way of blocking these messengers on the pix
firewall?
Thx
Kaiser A
This archive was generated by hypermail 2.1.4 : Tue May 03 2005 - 07:55:11 GMT-3