RE: blocking connection by application

• From: "Quillman Shawn (RBNA/CIT1.1)" <Shawn.Quillman@xxxxxxxxxxxx>
• To: "'[ISAserver.org Discussion List]'" <isalist@xxxxxxxxxxxxx>
• Date: Wed, 22 Jan 2003 07:41:18 -0500

For Kazaa block TCP/UDP port 1214.  For other P2P software look on the IANA
port assignment list here http://www.iana.org/assignments/port-numbers.
This of course assumes that the developer registered with IANA for a port
assignment.

-Shawn

-----
Shawn R. Quillman
Robert Bosch Corporation RBNA/CIT1.1
38000 Hills Tech Drive
Farmington Hills, MI  48331
(248) 553-1164 (P)     (248) 848-2855 (F)
shawn.quillman@xxxxxxxxxxxx


-----Original Message-----
From: Thapeli Matsabo - CPX Mngd Services
[mailto:ThapeliM@xxxxxxxxxxxxxxxxxxxx]
Sent: Wednesday, January 22, 2003 7:36 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: blocking connection by application


http://www.ISAserver.org


Hi William,
Thanks for your help. I believe this will only block firewall client
traffic. What about SecuNAT and proxy traffic?

Regards,

-----Original Message-----
From: William Robertson [mailto:william.robertson@xxxxxxxxx]
Sent: 22 January 2003 12:18
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: blocking connection by application


http://www.ISAserver.org


Um, try the following:

Within the Firewall Client configuration, add a new application called
"kazaa" and set the disable flag to 1.

This should tell all the firewall clients not to permit the Kazaa
application from even getting out of the individual workstations.

Cheers
William R.


-----Original Message-----
From: Thapeli Matsabo - CPX Mngd Services
[mailto:ThapeliM@xxxxxxxxxxxxxxxxxxxx] 
Sent: 22 January 2003 12:05 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] blocking connection by application

http://www.ISAserver.org


Hi,
I have a lot of users on my network that connect to P2P sites (i.e
Kazaa)using firewall client. On my logs I see all kazaa connections
going to
different IP's. This makes blocking by IP too much a hassle. Is there a
way
I can block by application. Since ISA already picks up the application
(kazaa.exe). 

Regards,

Thaps



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
robertson.william@xxxxxxxxxxxxxx
To unsubscribe send a blank email to
$subst('Email.Unsub')


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
thapelim@xxxxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
shawn.quillman@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

Other related posts:

• » blocking connection by application
• » RE: blocking connection by application
• » RE: blocking connection by application
• » RE: blocking connection by application
• » RE: blocking connection by application
• » RE: blocking connection by application
• » RE: blocking connection by application
• » RE: blocking connection by application

1. Home
2. isalist
3. Archive
4. 01-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---