Cisco4ng, If you want to block these IM's completely you'll need to use that pain in the *ss of a SmartDefense. But to stop only the file transfers you can simply use a rule:
Source: Internal LAN's Dest.: Internet Protocol groups: P2P_File_Sharing_Appications & Messenger_Applications Action: drop or reject (as wanted) Both protocol groups are ready to use and pre-configured into the Services list of an R55 or R55w FW. Mind you: it does not block any of the IM chat traffic itself and file transfer might still be possible through the use of proxy-apps. like Hopster. If you need to block it all you'll need to indulge yourself into the dungeons of SmartDefense... David -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of cisco4ng Sent: dinsdag 15 augustus 2006 14:59 To: [email protected] Subject: [FW-1] block file transfer in Instant Messenging like AOL, Yahoo and MSN while still allowing chat SmartCenter is NG with AI R55w on Nokia IP530. Enforcement Module is Nokia IP650 with IPSO 3.7.1 build 024 with CP NG with AI R55w HFA_04. Everything behind the Nokia is "hide" NAT when going out to the Internet. Everything is working fine. I would like to block users behind the Nokia from transferring files via instant messenging such as AOL, Yahoo and MSN while still allowing them to chat via IMs. Can someone show me how to do this with Checkpoint? Thanks. cisco4ng --------------------------------- Stay in the know. Pulse on the new Yahoo.com. Check it out. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
