Blocking ICQ2000 is easy.
Define a Network object (lets say "NetICQLogon") as
205.188.153.0 mask 255.255.255.0
Then add a rule just below your stealth rule as this
InternalNets NetICQLogon Any (Drop/Reject)
This will kill all access to ICQ:s logon servers, which
in effect will disable all access to ICQ from your network.
Regards,
Johan
> -----Original Message-----
> From: Iain Fyfe [mailto:[EMAIL PROTECTED]]
> Sent: den 23 maj 2000 17:59
> To: '[EMAIL PROTECTED]'
> Subject: RE: [FW1] icq 2000
>
>
>
> OK, you will need to have port 25 open to your mailserver,
> but not to your
> desktops. I can't see why you have to allow _any_ traffic
> from your users
> desktops directly to the Internet. If you configure your firewall to
> enforce this policy, you won't have a problem with users
> using these apps.
>
> Just my 0.02,
>
> Iain Fyfe
> mailto:[EMAIL PROTECTED]
>
> Counterpoint Consulting Ltd
> 20 Elmdale Road, Clifton, Bristol, BS8 1SG England
> tel +44 (0)117 980 9200
> fax +44 (0)117 980 9201
>
> http://www.counterpoint.co.uk
>
>
> > -----Original Message-----
> > From: Wicardy, Joe [mailto:[EMAIL PROTECTED]]
> > Sent: 22 May 2000 03:38
> > To: '[EMAIL PROTECTED]'
> > Subject: [FW1] icq 2000
> >
> >
> >
> >
> > I trust everyone know what ICQ is? Well, the latest version
> > (2000a) has a
> > way to get around the firewall, which I have successfully
> > accomplished. This
> > new icq seem to do network scan for available port to pass
> > thru, it can use
> > almost any ports you assign to it. yes, even port 25.... well
> > I can't block
> > that port now can I... :)
> >
> > Is anyone else experiencing this same issue ?
> >
> >
> > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > Joe Auric Wicardy
> > Health Department of WA
> > Internet System and Security Officer
> > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>
> >
> --------------------------------------------------------------
> --------------
> PRIVACY, CONFIDENTIALITY & DISCLAIMER NOTICE
> This email is confidential and may also be privileged. If
> you are not the
> intended recipient please notify us immediately; you should
> not copy the
> email or use it for any purpose nor disclose its contents to
> any person.
>
> Counterpoint operates internal anti-virus software but cannot
> guarantee that
> this message is virus free. The recipient should verify for
> themselves that
> the body and especially any attachments do not contain
> viruses that may be
> harmful to the recipient.
> --------------------------------------------------------------
> --------------
>
>
>
> ==============================================================
> ==================
> To unsubscribe from this mailing list, please see the
> instructions at
> http://www.checkpoint.com/services/mailing.html
> ==============================================================
> ==================
>
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
