Link to home
Start Free TrialLog in
Avatar of tekguy2001
tekguy2001Flag for Canada

asked on

Limewire

Hello Poeple,

I got a network going and it seems like there is always someone who is installing limewire on the network.  I have the following to show you.
I need to block these ports - i have a BEFSX41 - I need to know how to go abouts this cause if i block a port limewire uses then it will open another port somewhere else.  Please let me know.


00:00:16 TCP from 10.0.0.89:2493 to 210.60.214.21(210.60.214.21):22906
00:00:18 UDP from 10.0.0.89:23775 to 68.13.128.165:3352
00:00:18 UDP from 10.0.0.89:23775 to 66.108.188.242:51566
00:00:18 UDP from 10.0.0.89:23775 to 24.26.68.15:41175
00:00:18 UDP from 10.0.0.89:23775 to 80.230.177.4:31500
00:00:18 UDP from 10.0.0.89:23775 to 84.21.208.89:44256
00:00:18 UDP from 10.0.0.89:23775 to 80.217.39.246:37563
00:00:18 UDP from 10.0.0.89:23775 to 80.99.16.84:38283
00:00:18 UDP from 10.0.0.89:23775 to 222.151.70.34:44733
00:00:18 UDP from 10.0.0.89:23775 to 165.230.161.143:34667
00:00:18 UDP from 10.0.0.89:23775 to 147.32.102.75:8442
00:00:18 UDP from 10.0.0.89:23775 to 213.112.239.175:53828
00:00:18 UDP from 10.0.0.89:23775 to 137.132.232.195:30365
00:00:18 UDP from 10.0.0.89:23775 to 220.1.82.4:60159
00:00:18 UDP from 10.0.0.89:23775 to 128.120.178.230:34410

Thank you and have a nice day.
Avatar of pseudocyber
pseudocyber

It's simply not effective to block a P2P app with a Small Office/Home Office (SOHO) device like a Linksys router.  To do it technically is difficult and requires specialized, professional network equipment.  Even then, it's best not to block it, but to rate limit it - then it doesn't port hop.  You really need some kind of professional firewall which can look all the way up into Layer 7 (Application Layer) to detect P2P traffic.

Better thing to do is hunt them down and have a "talk" - or just pull their plug.
Avatar of tekguy2001

ASKER

Hmmmm...  Wonder if i could setup a computer before the router to do this.  If yes what type of program?  Could a simple proxy eliminate the problem?

Thanks for the quick answer back.

Let me know.
Maybe, or you could do it more like a firewall - disallowing everything except what is explicitly mentioned - so only allow ports 80 and 443 for web traffic, for instance.  However, some P2P apps can use those ports too.
What about this, i was gonna go see what this does but first i wanted to go see what they are.  But since you seem to know alot i'll ask you.

Filter Multicast, and NAT redirection.  

After this i give you full points! :)  Cause i will block everything but certain ports.

THanks
ASKER CERTIFIED SOLUTION
Avatar of pseudocyber
pseudocyber

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial

thats what i'd do too, just firewall all unused ports. what do you really need other than 80? maybe ftp or a game? but not all 65k+ ports. besides, who knows when your gonna get slammed by a new exploit on port 139 :(
this is one of those rare cases where its better to "need it and not have it" as opposed to "have it and not need it".