Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Blocking Kazaa

From: TSimons () Delphi-Tech com
Date: Mon, 30 Jun 2003 09:44:03 -0400
How about blocking it on the client side.   ...apparently your users can
install it so they should also have the rights to remove it....

Insert this into your login script:

   for /F "tokens=*" %%i in ('dir c:\kazaa.exe /b /s') do del %%i

To see what this does, try the following:
   for /F "tokens=*" %%i in ('dir c:\notepad.exe /b /s') do echo del %%i

this will echo out the command.

~Todd



-----Original Message-----
From: Jeff Falgout [mailto:JFalgout () co jefferson co us]
Sent: Friday, June 27, 2003 2:34 PM
To: firewall-wizards () honor icsalabs com
Subject: RE: [fw-wiz] Blocking Kazaa



James Cutter <JamesCutter () thedoghousemail com> 6/25/2003 11:31:44 PM


PIX can't do this. Other Cisco gear can't as well. 
There is a Peer to Peer firewall from Akonix (http://www.akonix.com/ )
that you can use. 

another option that you might want to try is checkpoint NG (starting at
FP3) that can block Peer-to-Peer (including kazaa) applications
traversing the firewall on port 80. 


Original message: 


Hi, I want to block kazaa from my pix fw blocking port 1214 TCP, but it
seems like it's using port 80 now,,,,and I can't drop that port because
web wont work.....


Any ideas?





I've seen posts on other mailing lists suggesting opening up port 1214,
yet throttling it down to the slowest speed possible.

The thought is that Kazaa first tries to connect on port 1214 if that
connection is refused, it jumps around and usually ends up on 80.
Yet if you allow the first connection to be successful it won't switch
ports. As the users start to download, the connection slows to a crawl.

It may allow Kazaa to work, but it sure won't be an enjoyable product

Haven't tried it personally though, so YMMV

Jeff

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: