cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
856
Views
0
Helpful
5
Replies

How to block users to listen radio through Internet?

shen.lu
Level 1
Level 1

I am using PIX515R as Firewall. Recently more and more users listen radio through Internet. Do you have know how to block users to listen radio through Internet?

Thanks.

5 Replies 5

bdube
Level 2
Level 2

Create an access-list applied to the inside interface with access-group command. Permit only the trafic you want, ie http, smtp, dns, etc. This way, your users shouldn't be able to start radio channels.

Benoit

Hi, bdube, thanks for your email. I have the same idea to do it, but do you know what service such as HTTP, FTP, does radio use? Thanks in advance.

There are many services today which pipe radio through port 80. You need a product that will monitor traffice on the application layer in order to prevent such traffic. I am not aware of a way to do this in a PIX or a router but there are third party products that do this for you.

Hi, pmay01, thanks for you reply. I know third party products such as websense.com can do it, but I want to know if all Internet radio sites use the same standrad and port? If yes (I think, otherwise, it is too messed), what is the port? If we know the port, we can easily block users to listen Internet radio by access-list. Thanks.

Reread what pmay01 said -- many of these "radio" services pipe their data over TCP/80, the same port used for 99.9% of standard web access. Have you considered implementing a policy (if you don't have one) which says in so many words "Don't use the Company's Internet bandwidth to listen to the radio?" There are seldom good technical solutions for personnel problems.