[c-nsp] how to forbid MSN traffic on PIX
cigdem gur
cigdem_gur at yahoo.com
Fri Mar 2 10:29:30 EST 2007
Hi,
I found that using 7.2(1) on PIX,IM inspection (MSN,
YAHOO) is possible with the configuration below.
hostname(config-cmap)# match [not] protocol {im-yahoo
| im-msn}
But I still think that if user is running MSN online,
such as e-body or e-messenger? Dropping this IM
traffic is still possible in this situation?
--- Velasquez Venegas Jaime Omar <jaime at ulima.edu.pe>
wrote:
> You may want to check a feature in IOS 12.4(4)T
> called Instant Message
> Traffic Enforcement which claims to do what you
> asked for with
> port-misuse im command at router :
> "The port-misuse im command blocks all the three IM
> applications going
> through the HTTP protocol"
>
>
http://www.cisco.com/en/US/products/ps6441/products_feature_guide09186a0
> 0805138c2.html#wp1047650
>
>
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net
> [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf
> Of cigdem gur
> Sent: Jueves, 01 de Marzo de 2007 07:29 a.m.
> To: cisco-nsp at puck.nether.net
> Subject: [c-nsp] how to forbid MSN traffic on PIX
>
> Hi,
>
> I want to forbid MSN traffic on PIX 515E FW,running
> software 7.0(1). Is
> it possible and how can I achieve it?
> Is there anyone who tried this?
>
>
>
>
________________________________________________________________________
> ____________
> Never Miss an Email
> Stay connected with Yahoo! Mail on your mobile. Get
> started!
> http://mobile.yahoo.com/services?promote=mail
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at
> http://puck.nether.net/pipermail/cisco-nsp/
>
>
____________________________________________________________________________________
Sucker-punch spam with award-winning protection.
Try the free Yahoo! Mail Beta.
http://advision.webevents.yahoo.com/mailbeta/features_spam.html
More information about the cisco-nsp
mailing list