RE: blocking p2p traffic

["Zach Forsyth" <Zach.Forsyth () kiandra com>]

> -----Original Message-----
> From: Deshpande, Yashodhan [mailto:ydeshpande () ipolicynet com] 
> Sent: Thursday, 4 March 2004 11:24 AM
>
> Hi,
>
>     Any information regarding IDS/IPS software available 
> which blocks p2p traffic? Or in general any information 
> regarding how to identify p2p application is running and may 
> be configure firewall to block such traffic. In general it is 
> observed that such applications do not work on = single port 
> and do port hopping. How to block them?
>
> Any inputs on the same would be appreciated.
>
>
> Thanks,
>
> Yashodhan


Yashonda,

Surfcontrol has a product which can filter and block:

Public IM Protocols
   AOL Instant Messenger
   MSN Messenger
   Yahoo Messenger
   ICQ

Peer-to-Peer
   Gnutella Network (Morpheus, BearShare, Phex, Gnucleus, LimeWire,
others)
   FastTrack Network (Grokster and Kazaa)

Not sure if it is what you are really looking for, but I would
definitely go and read up on it.
You can probably download a 30 day trial as well.
I have not used this product apart from lab testing, but I have had
great success with their email and web filtering products.

More info here: http://www.surfcontrol.com/products/im/ 

Cheers

Zach


---------------------------------------------------------------------------
Free 30-day trial: firewall with virus/spam protection, URL filtering, VPN,
wireless security

Protect your network against hackers, viruses, spam and other risks with Astaro
Security Linux, the comprehensive security solution that combines six
applications in one software solution for ease of use and lower total cost of
ownership.

Download your free trial at
http://www.securityfocus.com/sponsor/Astaro_focus-ids_040301
---------------------------------------------------------------------------