RE: Blocking messengers like msn, skype etc
From: n (n_at_discussions.microsoft.com)
Date: 12/01/04
- Previous message: Stephen Mike: "WEB Publishing to LAN will not download cab file."
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 30 Nov 2004 20:59:02 -0800
i dont know exaclty how skype works but one way you could do it is if you
setup a protocol rule to only allow http.
then setup a destination set with the skype ip range/dns names.
finally create a site and content rule to allow everything except the skype
destination set.
apply the protocol and site and content rules to your clients.
since these things require authentication, if you block the skype
authentication servers ip's/dns names it cant authenticate/connect *evil
grin*.
you could also use group policy to stop the progam from being run.
not sure if thats the answer you were looking for.
"Bernard Dijkhuizen" wrote:
> Hello,
>
> I want to allow only normal http traffic on client pc's.
> Now when a user start skype, he can chat and voicechat and I can only
> prevent him from doing so by ad the skype to the list of non allowed apps in
> the firewall client.
>
> Is there a way to block everything in http besides normal http traffic or is
> that the beginning of new problems and should I just name every application
> in the firewall client setting in ISA ?
>
> Or.... is there a better way...
>
> btw... I use ISA 2000
>
> Thanks a lot
>
> Bernard
>
>
>
- Previous message: Stephen Mike: "WEB Publishing to LAN will not download cab file."
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
