RE: stop microsoft p2p

["Kessler, Ben" <BKessler () chx com>]

Would "port security" (in Cisco speak) be appropriate here?

You could make the workstation ports "protected" and have only the router port(s) in "not protected" mode  (and port(s) 
for your server(s) if appropriate). 

I don't have first-hand experience with this but my understanding is that "protected" ports are only allowed to 
communicate with non-protected ports in the same VLAN.  So, in this example, all of your workstations would have to go 
through the router which could then apply ACLs to restrict traffic.

Here's a link to CCO that might help (long URL, watch the wrap):

http://www.cisco.com/en/US/products/hw/switches/ps646/products_configuration_guide_chapter09186a008007f37c.html#xtocid6

HTH,

Ben

-----Original Message-----
From: Robert E. Martin [mailto:rmartin () fishburne org]
Sent: Thursday, March 27, 2003 7:42 AM
To: firewall-wizards () honor icsalabs com
Subject: [fw-wiz] stop microsoft p2p


Anyone heard of a device or gizmo that replaces a hub or switch that can 
stop p2p or microsoft file sharing? scenario: two computers on the same 
segment connected via a hub or switch sharing files between themselves. 
Does not have to be music, could be data files, photos, copywritten data 
etc.. Can that be stopped?
-- 
Robert E Martin
IT Manager
Fishburne Military School
rmartin () fishburne org
540.946.7726

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards