[nsp] Blocking KAZAA and Co. on PIX
Voll, Scott
Scott.Voll at wesd.org
Tue Jul 13 11:22:18 EDT 2004
My understanding about applications like Kazaa is that it jumps around
on different ports if it gets blocked.
We ended up using a packeteer Packet Shaper to decrease the bandwidth so
low that kazaa can work, but so slow that the user gets frustrated and
quits.
Scott
-----Original Message-----
From: Serguei Bezverkhi [mailto:sbezverkhi at hotmail.com]
Sent: Tuesday, July 13, 2004 7:26 AM
To: cisco-nsp at puck.nether.net
Subject: [nsp] Blocking KAZAA and Co. on PIX
Hi,
I was searching Cisco web site for suggestions on how to block KAZAA
and
other file sharing applications on PIX. The document that I found was
saying
that it can only be implemented on a router using NBAR.
I would greatly appreciate if somebody who faced this problem, shared a
direction they took to filter these applications.
As far as I can see I have two options it is either to bring a router
with a
firewall feature set and using NBAR to fight these applications, or use
very restrictive access list from inside to make sure only allowed
traffic
is passing from inside to outside.
Any idea or suggestions or different approaches are greatly appreciated.
Thank you in advance
Serguei
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list