just allow tcp and udp 149 out. they are already defined as irc3 and irc4
(i think) you should not allow the entire irc group out as that include
6660-6670, certain trojans work on 6667, IRC is smart enough to figure out
that 149 is open.
-----Original Message-----
From: Amelis Uitenweerde [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 27, 2001 3:23 AM
To: [EMAIL PROTECTED]
Subject: [FW1] MSN Messanger
Hi
I need to add a service to get te MSN messanger working via the firewall as
the current rule is:
Iner_net Any Any Accept.
Now as all can see, this gives the users on my Internal net free reign and
they are hogging my bandwidth. How do I go about starting to restrict them,
but still allow them access to the Messanger service.What I'm trying to stop
is the great amount of music downloads.
Thanks
Amelis Uitenweerde
Network Administrator
+27 11 789 1808
+27 83 326 2453
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
