[cisco-voip] how to block peer to peer and chat
Chris Serafin
chris at chrisserafin.com
Tue Jul 11 21:24:58 EDT 2006
Search cisco for 'nbar p2p' and you should hit a link about using NBAR
to find traff
ic on dynamic ports and block or rate limit it.. Use the MQC approach on
a policy map for that type of traffic. You can use PDLMs for p2p traffic
and nmap match statements to cancel out traffic to the IM main servers,
ie : *.blue.aol.com
Chris Serafin
IT Security / Cisco VoIP Engineer
chris at chrisserafin.com
Voll, Scott wrote:
>
> Good luck… you need something that can look into the packet for
> that….. ports change if blocked.
>
> Look at netinforcer or packetshapers, etc.
>
> Scott
>
> ------------------------------------------------------------------------
>
> *From:* cisco-voip-bounces at puck.nether.net
> [mailto:cisco-voip-bounces at puck.nether.net] *On Behalf Of *James Grace
> *Sent:* Tuesday, July 11, 2006 11:35 AM
> *To:* cisco-voip at puck.nether.net
> *Subject:* [cisco-voip] how to block peer to peer and chat
>
> Can someone send me some examples on how to block peer to peer and
> chat on my GW. My gw is going to be used for voice and data and just
> want to keep unwanted traffic off
>
> James D. Grace
>
> **CCNP CCNA MCSE MCDBA**
>
> Sr. System Engineer / Professional Svc.
>
> **Digitel Corporation**
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> cisco-voip mailing list
> cisco-voip at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-voip
>
More information about the cisco-voip
mailing list