Rob, Currently we use MS Proxy server to restrict Internet access so I, unfortunately, do not have your answer. Your offer to post your ACL for peer-to-peer blocking would be very appreciated though. Soon we will be removing Proxy and allowing our new PIX to restrict Internet access. At that time we'll need to set up ACL's as you are now.
If you wouldn't mind posting yours, I would be extremely appreciative. It will help save me a lot of time in the very near future. Thanks, David Armstrong ""Mears, Rob"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi Cisco gods, > > I have successfully blocked all chat services at the PIX firewall, I > think. As I walk around and find people using MSN or Messenger I find > that public proxy they are using and kill it too. BUT, I am having a > hell of a time with ICQ. I do have all the ports UDP and TCP blocked so > it does not work UNLESS they use port 80. This is where I am stuck, I > cant block port 80 as you know so how do I kill this monster? Has any > one had luck with this and has anyone found a way to stop the public > proxy usage? I really feel as if I am fighting a losing battle, cuss > for every block I am countered with a way around it. > > My inside ACL in the pix is quite impressive and all just for blocking > this crap, if anyone would like it for theirs I will provide as it is > proven and works, with exception to ICQ. > > > HELP WANTED > > Thanks > Rob Mears III, CCNP, MCSE, CNE, NNCDS, NNCSS, NNCPS, MCP+I, A+ > Technical Mercenary Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=52293&t=52285 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
