Solved

File Sharing and P2P Ports

Posted on 2003-11-14
4
738 Views
Last Modified: 2013-11-21
Does anyone have a list of them? I would like to block them. Thanks
0
Comment
Question by:drgh0st
4 Comments
 
LVL 6

Expert Comment

by:rj-smith
ID: 9749345
No list, but I think each P2P network uses a different port.

The ones I do know are as follows:

GNUtella - 6346 to 6348
KaZaA - 1214

If your firewall's capable, it might be a better idea to log all traffic for a while to see what's used and then block everything else. After that, analyse your list and see what else can be discarded.

Hope that helps.
0
 
LVL 18

Accepted Solution

by:
chicagoan earned 25 total points
ID: 9749497
It's a slippery slope!

If you have cisco gear, take a look at NBAR

otherwise you'll have to work you way through each service:

example: kaaza - reverse ip lookup gives you kaaza's addresses: Start with blocking 212.100.253.45 212.100.253.44 and find the common commonlly used port(s):  http://www.seifried.org/security/ports/1000/1214.html

here's a commonly used list:
 412
1214
4661
 4662
4663
 4664
 4665
 6346
 6347
 6881
 6882
6883
 6884
 6885
6886

.. easily be defeated by people switching to non-default ports or UDP based protocols, some like WINMX don't need the ports open on both sides, some hide as http...

The first thing to do is WRITE A POLICY! advertise your policy, watch your bandwidth hogs, scan for Mp3's and P2P software on machines, do port scans for rogue servers... and hammer a couple of people - get HR to get them on the carpet - the word will get out.

There are a lot of products coming on line to combat the legal implications and bandwidth drain like
http://www.lowth.com/p2pwall/ftwall/

and scores of others, but watching traffic and communicating with employees is very effective
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As a financial services provider, your business is impacted by two of the strictest federal regulations on record: the Sarbanes-Oxley Act and the Gramm-Leach-Bliley Act. Correctly implementing faxing into your organization to provide secure, real-ti…
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now