RE: Blocking Kazaa

[natfirewall () netscape net (Nate Bombero)]

Is anyone out there willing to comment on this Peer to Peer blocking feature of Checkpoint NG fp3?  Does it work, not 
work, not sure?

I've been using Snort's flex response to try to accomplish the blocking.  I had to add to the stock Snort P2P rules 
because the content of those rules didn't quite match what I was seeing in the gnutella packets I had captured...  
Which makes me feel like maybe Snort is not finding all of our P2P file sharers. (Next I plan on comparing Snort's 
kazaa rules against some current kazaa packets)

So... does anyone using CKP's NG feel warm and fuzzy about its ability to block the peer to peer stuff?


Thanks,

Nat

> -------- Original Message --------
> Subject: RE: [fw-wiz] Blocking Kazaa
> Date: Wed, 25 Jun 2003 22:31:44 -0700 (PDT)
>
>
> PIX can't do this. Other Cisco gear can't as well. 
> There is a Peer to Peer firewall from Akonix (http://www.akonix.com/ )
> that you can use. 
>
> another option that you might want to try is checkpoint NG (starting at
> FP3) that can block Peer-to-Peer (including kazaa) applications
> traversing the firewall on port 80. 
>
>
> Original message: 
>
>
> Hi, I want to block kazaa from my pix fw blocking port 1214 TCP, but it
> seems like it's using port 80 now,,,,and I can't drop that port because
> web wont work.....
>
>
> Any ideas?

__________________________________________________________________
McAfee VirusScan Online from the Netscape Network.
Comprehensive protection for your entire computer. Get your free trial today!
http://channels.netscape.com/ns/computing/mcafee/index.jsp?promo=393397

Get AOL Instant Messenger 5.1 free of charge.  Download Now!
http://aim.aol.com/aimnew/Aim/register.adp?promo=380455
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards