[c-nsp] Block P2P router 851

Jorge Evangelista netsecuredata at gmail.com
Sat Mar 31 02:58:04 EST 2007


Hi guys, I am looking a configuration for blocking Trafic P2P over
Cisco 851, I have some problems, when I set up the router the
configuration below, some pages can not run, some pages can not load.
This is for a cybercafe with 50 PCs, many people play online games,
and download p2p applications, how I can optimize my rules?. At the
moment I am blocking with access lists, but it is not very useful.



This is my configuration

ip inspect name autosec_inspect appfw policyfw
ip inspect name autosec_inspect cuseeme timeout 3600
ip inspect name autosec_inspect ftp timeout 3600
ip inspect name autosec_inspect rcmd timeout 3600
ip inspect name autosec_inspect realaudio timeout 3600
ip inspect name autosec_inspect smtp timeout 3600
ip inspect name autosec_inspect tftp timeout 30
ip inspect name autosec_inspect udp timeout 15
ip inspect name autosec_inspect tcp timeout 3600
no ip bootp server
ip ssh maxstartups 2
ip ssh logging events
ip ssh version 2
!
appfw policy-name policyfw
  application http
    strict-http action allow alarm
    port-misuse p2p action reset alarm
    port-misuse tunneling action reset alarm
!
int f4
ip inspect autosec_inspect out



Thank for your response.


More information about the cisco-nsp mailing list