From: Joseph Brunner (joe@affirmedsystems.com)
Date: Wed Jul 23 2008 - 03:44:31 ART
Cisco and the other pdlm/nbar protocol sniffers of the network world are
always one or two steps behind skype...
Remember that game when we were grade school age - "Where in the world is
Carmen Sandiego"?
We'll remember we could never catch her, she was always just "leaving town"
That's skype.
Verso boxes can sometimes block it... I hear they use those in dictatorships
like Dubai to block all internet based telephony so you have to his
majesty's telephone network, etc.
Checkpoint boxes can sometimes block it too, but I have seen skype work
through them lately.
I think bluecoat can block them occasionally too...
-Joe
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Radioactive Frog
Sent: Wednesday, July 23, 2008 2:14 AM
To: Cisco certification
Subject: match protocol skype doesn't work
Strange, blocking skype using nbar doesn't work.
class-map match-any BlockSkype
match protocol skype
policy-map BlockSkype
class BlockSkype
drop
int fas0/0
desc ## connected to local lan###
service-policy input BlockSkype
i've checked the Skype client setting - tried unticking the option wher eit
says put skype traffic to http port 80. but still doesn't work.
when i open the skye client which is connected to fas0/0 , it still works!
lol
any idea?
This archive was generated by hypermail 2.1.4 : Mon Aug 04 2008 - 06:11:56 ART