Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
The powers that be have decided to ban all instant messengers from the network. I have disabled the relevant ports on the firewall but if they cant communicate on the set port they revert to the http port. I dont want to go round and un-install on every PC as its very easy for them just to re-install again, is there another way round this?
What do you mean by this? "I have disabled the relevant ports on the firewall but if they cant communicate on the set port they revert to the http port." What ports did you disable? IM for example uses many different ports, not just one like 80, 21, 23.
0 
What i meant was, for MSN i disabled port 1863, AOL i disabled 5050 and Yahoo i disabled 5190. But MSN messenger reverts to http port 80 if it cant communicate on port 1863, you just loose a bit of funcionality. I know vioce chat and webcams etc use different ports but that is not an issue here.
0
Well as long as you allow normal internet surfing you won't be able to block it. The only way would be to filter at a very high level. But that would be a big drain on your server. And besides most of these messenger services have java applet versions which work directly in the browser without having to install the messenger. Anyways if you are using a proxy server you could block the messenger install file. Not a very elegant solution but might help block a few people. A creative person will always get around it.
Mik
0
download Zone from zonelabs. works great but i dont know if it will work on the network
i think they have a program for that.
also try N2H2,netnanny,
0
I recommend you simply have the powers to be issue a directive that use of instant messaging technology is bad and grounds for immediate dismissal.
Then use a sniffer like TCPDUMP to watch the various ports and identify the offenders. Tell them your doing this and let the chips fall were they may..
0
Right, I've managed to disable it. Took me a long time to work out what it was doing but basically it's authenticates to gateway.messenger.hotmail.com if you drop anything to and from that host on your firewall your users will not be able to authenticate.
It works ;-)
Cheers
JoD
0
It seems to work, but I need now to define a service in Proxy Server 2.0 for some of the network's users who can use Messenger, and others not. If I can do it, I'll tell you how.
0
Managed to stop it by denying acces to the 64.4.0.0 network, only problem is i cant use hotmail. I enabled access to 64.4.52.7 but still no joy.
0
The powers that be have decided to ban all instant messengers from the network. I have disabled the relevant ports on the firewall but if they cant communicate on the set port they revert to the http port. I dont want to go round and un-install on every PC as its very easy for them just to re-install again, is there another way round this?
0
You only need to block the logon servers.
all of them are on 64.4.13.0/24For what I can tell from the sniffer most of the log servers are on the above 128 range..
so I guess you could block 64.4.43.128/25and Hotmail will still work..
0
you are all a bunch of loser's. why dont u have some faith in workers and allow messenger, because it infuriates them and makes them less productive. when they are denied a simple privellage of communication.
0
Thanks for that Jose, my IP is a little rusty though. I have to put the address range in using the standard IP and Subnet format. Now i'm pretty sure the /25 means the subnet is 255.255.255.128 but how do you get the 64.4.43.128 address?
I have actually got 64.4.13.170 with a subnet of 255.255.255.0 which should block all 64.4.13 address'. This still lets in both messenger and hotmail.
Darrell you are an idiot, my bosses have decided to ban messenger not me, if you;d have bothered to read the original post you'd have seen that. I still don't agree with you though, people are supposed to be working at work. Messenger is an easy way for them to skive. Communicate at home when you're not getting paid to do something else.
0
Hi folks
Jose is in the right way.
In fact you have to block access on ports 1863 and 80 to :64.4.12.0/24
64.4.13.0/24So Messenger is disabled and hotmail still works.
0  |
 |
 |
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
