Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
712
Views
0
Helpful
2
Replies

PIX 515 Block pesky Instant Message programs

rcielma
Level 1
Level 1

‎11-12-2002 07:41 AM - edited ‎02-20-2020 10:22 PM

Hi all. I have a relatively easy question regarind how to block Instant Messaging programs. I've tried a few things like:

access-list inside deny tcp any any eq 1863

access-list inside deny tcp any any eq 5000

access-list inside deny tcp any any eq 5001

access-list inside deny tcp any any eq 5050

access-list inside deny tcp any any eq 5100

access-list inside deny tcp any any eq 1214

I'm not seeing any changes. I can still run the programs. Is there something else I should be doing?

0 Helpful
2 Replies 2

bobd
Level 1
Level 1

‎11-12-2002 01:47 PM

Most IM programs in use today adapt themselves automatically to work behind a firewall. This includes unsing port 80, 23, or any other available port to get it's message through. Here's a couple of things you can try though.

To block AOL IM you need to block port 5190 and the AIM authentication servers login.oscar.aol.com (current addresses: 64.12.161.185, 64.12.161.153)

Yahoo Messenger doesn't seem to use any standard port but you can try the same thing with their servers at (cs.yahoo.com and scsa.yahoo.com) 216.136.175.226, 216.136.226.209, 216.136.226.210, 216.136.233.132, 216.136.173.172, 216.136.173.179 and 216.136.233.128

MSN Messenger can be blocked with TCP Port 1863 and IP Range 64.4.13.0/24. I don't believe this will block out any web content with MSN, but use with caution.

ICQ can be blocked with ports 4000/UDP, 5190/TCP, and login.icq.com (205.188.179.233, 64.12.200.89)

I've seen this question a hundred times, and it seems as though as soon as you get a working block in, they (the IM demons) update the software and it finds a way around your configs. Your results may vary - and no guaranties from this ol' boy.

If you really want to prevent the use of Instant Messaging apps, the only sure way is to lock down the workstation to the point that they can no longer be loaded.

Bob

0 Helpful

rcielma
Level 1
Level 1
In response to bobd

‎11-12-2002 01:54 PM

Bob, thanks for the response. It is greatly appreciated. I am locking down the workstations as we speak :).

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card