Re: Blocking Instant Messaging Programs

---

• From: "Jim in Arizona" <tiltowait@xxxxxxxxxxx>
• Date: Wed, 8 Jun 2005 15:03:30 -0700

---

"Bobby Mir" <bam@xxxxxxxxxxxxxxx> wrote in message
news:%23%23nvpdEbFHA.3040@xxxxxxxxxxxxxxxxxxxxxxx
> Hi there,
>
> I am trying to block the use of AOL Instant Messenger, MSN Messenger,
> Yahoo
> Messenger, and ICQ (the top 4 used instant messaging clients used on our
> network). We've got an ISA 2000 Server set up. I am interested in
> knowing
> how blocking these can be done on the server side, i.e. not having
> anything
> to do with client machines. Blocking the web based versions of these is
> not
> so hard, as that can be implemented in the restricted destinations...same
> thing applies to web based email (Hotmail, Yahoo, AOL, Gmail, etc). We
> are
> not interested in using the ISA Firewall as that has to be used on client
> machines as well. Is there any other way this can be done such as
> blocking
> relevant ports? Does anyone know these ports or port ranges or where I
> can
> go to have this done? Any help and recommendations would be apprecaited.
>
> Thanks in advance,
>
> Bobby
>

Have you looked at your protocol rules under Access Policy. Create a new
rule, choose deny, then selected protocols. You'll see that AOL IM, ICQ amd
MSN are already in there.

You can create a new IP Protocol in Plolicy Elemenets --> Protocol
Definitions. This article describes the ports for the various big IM clients
out there:
http://www.technicalinfo.net/papers/IMSecurity.html
Yahoo is port 5050.

HTH,
Jim


.

---

• References:
  • Blocking Instant Messaging Programs
    • From: Bobby Mir

• Prev by Date: Re: ISA 2004 Caching Issues
• Next by Date: Re: ISA 2004 Caching Issues
• Previous by thread: Blocking Instant Messaging Programs
• Next by thread: Re: Blocking Instant Messaging Programs
• Index(es):
  • Date
  • Thread

---

Relevant Pages How do i stop yahoo with netscreen. ... But yahoo tried everything, blocked 3 entire subnets and still no joy, any ... I have all ports in denied, and all ports out apart from SMTP, pop3, ... disallow ICQ and Yahoo Messenger through port 80 ... (Security-Basics) RE: How do i stop yahoo with netscreen. ... How do i stop yahoo with netscreen. ... I have all ports in denied, and all ports out apart from SMTP, pop3, ... disallow ICQ and Yahoo Messenger through port 80 ... Symantec is the Diamond sponsor. ... (Security-Basics) Re: Be afraid! Be very afraid! ... I'm greatly relieved to see there are opt-outs for AOL Browser and Toolbar. ... At this point I proceeded with the install. ... Messenger alert to upgrade to Yahoo! ... Messenger with Voice, things weren't quite what they seemed. ... (microsoft.public.windows.inetexplorer.ie6.browser) TCP ports open or used? ... I am running windows 98SE and trying to use PC to PC calling in Yahoo ... with a firewall Yahoo messenger crashes. ... What ports are used by Yahoo! ... (microsoft.public.windows.inetexplorer.ie6.browser) Re: who owns IP ... >>>They could be just MSN and AOL members... ... > Microsoft-Global-Net is MS's Messenger network. ... > Looking at my Sygate personal firewall on WinXP ATM shows that MSN ... > What ports are you picking them up on? ... (comp.os.linux.security)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)