Solved

Blocking Streaming Media

Posted on 2004-08-09
7
966 Views
Last Modified: 2010-04-09
I have a network of about 30 users and a lot are starting to use Media players to stream Music, sports, etc. We have blown our data useage buy a long shot for the past 2 months and I want to put a stop to it.

Can anyone tell me how to block both Windows Media and Real Player Streams.

If it helps, I have a Netscreen 25 Firewall.

Thanks

Andrew
0
Comment
Question by:andrewharris
7 Comments
 
LVL 15

Expert Comment

by:Yan_west
Comment Utility
You have to block all outgoing traffic to port 1755
Real Media: Port 554

Actually, I would block all port by default, only opening the needed one... 80 for Http, etc.. deny everything first, and open up as needed, this is the better approach.
0
 
LVL 15

Accepted Solution

by:
Yan_west earned 500 total points
Comment Utility
Oh, and btw, people will  still be able to stream through port 80.. and you need it. Check in for firewall appliance if you can block  Mimes types.. (audio, etc..)

if you cannot, see if somewhere in your firewall config, you can block file extensions.. then you will be able to block all type of audio/video file (*.ram, *.wmv, *.wma, etc..)
0
 
LVL 4

Author Comment

by:andrewharris
Comment Utility
Hmmm. As I thought...Port 80...The $%^&*( :-)

Gonna leave it open for a while longer to see if there is any other ideas (I doubt it, but just in case).

Andrew
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 36

Expert Comment

by:grblades
Comment Utility
Hi andrewharris,
Does the netscreen support redirecting or validating URL's against a proxy server or blacklist There are various protocols for this such as WCCP.

If it does then you could setup a simple proxy server and configure it to allow/deny particular file types. You could also add on a blacklist to deny sites which only provide video files etc...

Even if it does not provide this functionality you could configure every browser to use the proxy and then only allow the proxy to access the web.
0
 
LVL 4

Author Comment

by:andrewharris
Comment Utility
grblades,

Not as far as I know. Thanks anyway

Andrew
0
 
LVL 1

Expert Comment

by:amkessler
Comment Utility
Sonicwall has a Feature called IPS (intrusion Protection Services) that does that and more. It will do reporting and bocking of ay predefind or custom service.  


I know you have a Netscreen, but if you are considering a trade up,  I think Sonicwall has a tradeup program still in effect, I know they did for a while in the spring.  The cost of a 25 user sonicwall Tz 170 with the necessary bells and whistles should be no more that $1700.  The newist firmware even does external wireless AP's and guest services.  A very good thing to look at.
0
 
LVL 4

Author Comment

by:andrewharris
Comment Utility
OK,

Well no one seems interested. Thanks all.

Andrew
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now