jeje, all you have to do, is to block the initial connection to the napster
server. this happaens in the tcp port 8875, gnuttella on tcp 6346, icq 2000
tcp 5190, icq tcp and udp 4000. all are dest. ports, of course.
ah, if you want to block the new "Scour exchange", block the connection with
the host 63.251.203.102. thats all.
your internals will hate you, i promisse.
> -----Mensaje original-----
> De: Liwanag, Manolito [SMTP:[EMAIL PROTECTED]]
> Enviado el: Tuesday, September 19, 2000 5:14 PM
> Para: 'Cisco Group Study'
> Asunto: Blocking Napster on the PIX
>
> Can anyone give me a pointer on how to stop our internal users from
> downloading things using Napster. I have a PIX 520 firewall with 5.03.
>
> I tried :
> outbound 300 deny 64.124.41.35 255.255.255.240 0 tcp
> outbound 300 deny 208.178.175.128 255.255.255.248 0 tcp
> outbound 300 deny 208.49.239.240 255.255.255.240 0 tcp
> outbound 300 deny 208.49.228.0 255.255.255.0 0 tcp
> outbound 300 deny 208.184.216.0 255.255.255.0 0 tcp
> outbound 300 deny 208.178.163.56 255.255.255.248 0 tcp
> apply (inside) 300 outgoing_dest
>
> Unfortunately this did not stop users with the Napster client already
> installed from donwloading mp3s.
>
> Any sound advice is most welcomed.
>
> rgds,
> Manolito
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _________________________________
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_________________________________
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
