Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
320
Views
0
Helpful
1
Replies

Blocking P2P, MP3 Downloads

j.khandia
Level 1
Level 1

‎07-24-2003 02:03 AM - edited ‎03-09-2019 04:10 AM

I have a PIX 515 and was wondering if the Cisco PIX allows blocking of downloads from P2P sites like Kazaa, Morpheus as well as blocking MP3 downloads.

If this is possible how can this be done? Are there specific rules, ports or access lists I have to configure to block the access and prevent downloading?

Labels:
0 Helpful
1 Reply 1

r.crist
Level 1
Level 1

‎07-24-2003 06:47 AM

Back in the day, this was easier because these apps used specific source/destination ports. They got smart and coded the apps to search for unused ports. So it's difficult to block at the PIX. If you know the IP addresses of the Kazaa and/or Morpheus servers you can configure an outbound acl entry to deny all traffic to them.

access-list no_p2p deny ip any

access-list no_p2p deny ip any

access-list no_p2p permit ip any any

access-group no_p2p in interface inside

If you have access to the ISP prem router you can also configure NBAR. The router will look beyond tcp/udp port info and read into the payload and classify packets based on the content.

check out this link for info on how to config NBAR:

http://www.cisco.com/en/US/customer/products/sw/iosswrel/ps1839/products_feature_guide09186a0080087cd0.html

Rich

0 Helpful
Customers Also Viewed These Support Documents