Well you almost got it but you have to be a little more tenacious to
really block it effectively. On AIM you have to block every port going
to those addresses. In the AOL IM setup you can change the port number
to 80 for example and connect to the servers. Then you have to take
into account that users can go to http://www.aol.com/aimexpress/
<http://www.aol.com/aimexpress/> and use the web client. So, depending
on how strict you get you might have to block access to all of the
www.aol.com <http://www.aol.com> IP's. So, basically... it's a losing
battle to say the least. I would recommend getting management to do
their job and proactively enforce policies... rather than trying to
block access to the wide gamut of chat clients.
Preston Craig Jeffares
Network Engineer
Georgia Department of Motor Vehicle Safety
-----Original Message-----
From: Simon Curtiss [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 19, 2001 7:32 AM
To: MS-Exchange Admin Issues
Subject: RE: Off topic ... blocking chat programs
Found it
AOL IM - block port 5190 on:
205.188.3.160
205.188.3.176
205.188.5.204
205.188.5.208
205.188.7.164
205.188.7.168
205.188.7.172
205.188.7.176
ICQ - block port 5190 on:
64.12.162.57
205.188.179.233
MSN block 64.4.13.17
Yahoo block port 5050 on:
aaagh too many
basically 216.136.175. 142 to 145
216.136.224.213 to 214
216.136.225.11, 12, 35,36,83,84
216.136.226. 117 to 118
216.136.131.93
Stu wrote he wqas going to block all ports to those IP addresses on his
PIX and that AOL changes the IP addresses every 6 months - thanks AOL!
Simon
-----Original Message-----
From: Irfan GM [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, 19 September 2001 11:22 p.m.
To: MS-Exchange Admin Issues
Subject: RE: Off topic ... blocking chat programs
anyway thanks simon , looking forward for your inputs
-----Original Message-----
From: Simon Curtiss [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 19, 2001 4:53 PM
To: MS-Exchange Admin Issues
Subject: RE: Off topic ... blocking chat programs
Seriously, look at the archives of the Sunbelt Win-Security list -
there was a list of ports in the W2K newsletter the other week, I've got
a copy but I can't find it right now. I'll see if I can find it in the
morning, it's 11:20 pm and I'm just finishing a bad evening in which I
got nowhere - (put long boring story here)
Simon
-----Original Message-----
From: Irfan GM [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, 19 September 2001 10:56 p.m.
To: MS-Exchange Admin Issues
Subject: Off topic ... blocking chat programs
Hi guys ,
Slightly off topic , but chose this forum , hoping for an answer.
My question is how do i block chat programs like icq, msn messenger etc
.
I have windows 2000 domain with no proxy server , can i do it using DNS
server ?
so that all these chat programs resolve their respective ip addresses
internally ?
Thanks
Irfan
List Charter and FAQ at:
http://www.sunbelt-software.com/exchange_list_charter.htm
_____
Notice of Confidential information
The information contained in this electronic mail is CONFIDENTIAL
INFORMATION and may be LEGALLY PRIVILEGED, intended only for the
individual or entity named above. If you are not the intended recipient,
you are hereby notified that the use, dissemination, distribution, or
copying of this document is strictly prohibited. If you have received
this electronic message in error, please immediately notify us by return
or telephone (call collect to 07 577 6049) and destroy the original
message. Thank you. .
This e-mail message has been scanned and cleared by MailMarshal
www.marshalsoftware.com <http://www.marshalsoftware.com/>
_____
List Charter and FAQ at:
http://www.sunbelt-software.com/exchange_list_charter.htm
List Charter and FAQ at:
http://www.sunbelt-software.com/exchange_list_charter.htm
_____
Notice of Confidential information
The information contained in this electronic mail is CONFIDENTIAL
INFORMATION and may be LEGALLY PRIVILEGED, intended only for the
individual or entity named above. If you are not the intended recipient,
you are hereby notified that the use, dissemination, distribution, or
copying of this document is strictly prohibited. If you have received
this electronic message in error, please immediately notify us by return
or telephone (call collect to 07 577 6049) and destroy the original
message. Thank you. .
This e-mail message has been scanned and cleared by MailMarshal
www.marshalsoftware.com <http://www.marshalsoftware.com/>
_____
List Charter and FAQ at:
http://www.sunbelt-software.com/exchange_list_charter.htm
List Charter and FAQ at:
http://www.sunbelt-software.com/exchange_list_charter.htm
