cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2440
Views
0
Helpful
32
Replies

ICQ and the PIX

rmears
Level 1
Level 1

Hi Cisco gods,

I have successfully blocked all chat services at the PIX firewall, I think. As I walk around and find people using MSN or Messenger I find that public proxy they are using and kill it too. BUT, I am having a hell of a time with ICQ. I do have all the ports UDP and TCP blocked so it does not work UNLESS they use port 80. This is where I am stuck, I cant block port 80 as you know so how do I kill this monster? Has any one had luck with this and has anyone found a way to stop the public proxy usage? I really feel as if I am fighting a losing battle, cuss for every block I am countered with a way around it.

My inside ACL in the pix is quite impressive and all just for blocking this crap, if anyone would like it for theirs I will provide as it is proven and works, with exception to ICQ.

HELP WANTED

Thanks

Rob Mears III, CCNP, MCSE, CNE, NNCDS, NNCSS, NNCPS, MCP+I, A+

Technical Mercenary

32 Replies 32

thong.do
Level 1
Level 1

It seems like the Proxy fully goes out to the internet without restriction. Configure the Pix to filter out this Proxy, and allow certain protocols and ports only.

Good luck

jtowne
Level 1
Level 1