• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 9209
  • Last Modified:

Limewire

Hello Poeple,

I got a network going and it seems like there is always someone who is installing limewire on the network.  I have the following to show you.
I need to block these ports - i have a BEFSX41 - I need to know how to go abouts this cause if i block a port limewire uses then it will open another port somewhere else.  Please let me know.


00:00:16 TCP from 10.0.0.89:2493 to 210.60.214.21(210.60.214.21):22906
00:00:18 UDP from 10.0.0.89:23775 to 68.13.128.165:3352
00:00:18 UDP from 10.0.0.89:23775 to 66.108.188.242:51566
00:00:18 UDP from 10.0.0.89:23775 to 24.26.68.15:41175
00:00:18 UDP from 10.0.0.89:23775 to 80.230.177.4:31500
00:00:18 UDP from 10.0.0.89:23775 to 84.21.208.89:44256
00:00:18 UDP from 10.0.0.89:23775 to 80.217.39.246:37563
00:00:18 UDP from 10.0.0.89:23775 to 80.99.16.84:38283
00:00:18 UDP from 10.0.0.89:23775 to 222.151.70.34:44733
00:00:18 UDP from 10.0.0.89:23775 to 165.230.161.143:34667
00:00:18 UDP from 10.0.0.89:23775 to 147.32.102.75:8442
00:00:18 UDP from 10.0.0.89:23775 to 213.112.239.175:53828
00:00:18 UDP from 10.0.0.89:23775 to 137.132.232.195:30365
00:00:18 UDP from 10.0.0.89:23775 to 220.1.82.4:60159
00:00:18 UDP from 10.0.0.89:23775 to 128.120.178.230:34410

Thank you and have a nice day.
0
tekguy2001
Asked:
tekguy2001
  • 3
  • 2
1 Solution
 
pseudocyberCommented:
It's simply not effective to block a P2P app with a Small Office/Home Office (SOHO) device like a Linksys router.  To do it technically is difficult and requires specialized, professional network equipment.  Even then, it's best not to block it, but to rate limit it - then it doesn't port hop.  You really need some kind of professional firewall which can look all the way up into Layer 7 (Application Layer) to detect P2P traffic.

Better thing to do is hunt them down and have a "talk" - or just pull their plug.
0
 
tekguy2001Author Commented:
Hmmmm...  Wonder if i could setup a computer before the router to do this.  If yes what type of program?  Could a simple proxy eliminate the problem?

Thanks for the quick answer back.

Let me know.
0
 
pseudocyberCommented:
Maybe, or you could do it more like a firewall - disallowing everything except what is explicitly mentioned - so only allow ports 80 and 443 for web traffic, for instance.  However, some P2P apps can use those ports too.
0
Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

 
tekguy2001Author Commented:
What about this, i was gonna go see what this does but first i wanted to go see what they are.  But since you seem to know alot i'll ask you.

Filter Multicast, and NAT redirection.  

After this i give you full points! :)  Cause i will block everything but certain ports.

THanks
0
 
pseudocyberCommented:
Multicast is used by some protocols to communicate with each other.  Unless you have some special multicast configuration on your switch, it's treated as a broadcast.  Mutlicast filtering typically limits the packets to a certain percentage of bandwidth and drops the rest.

NAT redirection - this one I'm not totally sure of, but it might mean it gives you the ability to redirect the direction a NAT flow is going, so it goes out one IP but comes back to a different machine - which wouldn't make much sense.  I don't know - have to check your documention on that one.

However, blocking everythign but certain ports might not block the P2P apps - they can port scan and look for open ports.  But it's a start.

HTH
0
 
ViRoyCommented:

thats what i'd do too, just firewall all unused ports. what do you really need other than 80? maybe ftp or a game? but not all 65k+ ports. besides, who knows when your gonna get slammed by a new exploit on port 139 :(
this is one of those rare cases where its better to "need it and not have it" as opposed to "have it and not need it".
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now