Solved

HOW TO BLOCK FILE TRASFER IN ISA 2004 BUT ALLOW MESSANGER SERVICE

Posted on 2006-06-17
7
1,969 Views
Last Modified: 2008-01-09
Hi,
I am new to ISA 2004 firewall, I want to allow messenger but don't want to use file transfer using messanger. Can any body help me .
0
Comment
Question by:samir_santra
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 16927344
MSN uses the following port range (6891-6900 on tcp) for file transfer. try blocking these ports from local host & internal to external
0
 

Author Comment

by:samir_santra
ID: 16928877
This port information is critical. Thank you.

Does all messenger service use the same port range.
Should I apply this on the firewall policy ?
Also can you please guide me how to block this .

Thanks.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 16929062
<<<
Containment

Internet or edge facing firewalls should be configured with a default 'Deny' policy and contain 'Permit' policies for only needed services and applications. With respect to the W32.Bropia.J and W32.Bropia.L worms certain MSN Messenger file transfers can be blocked at the Internet firewall by removing any permit rules that allow TCP port 6891-6900 traffic. Note: Blocking TCP ports 6891-6900 will not block MSN Messenger instant messages as they flow over TCP port 1863.
>>>

This range will block most MSN transfers but not necessarily all. The new versions have proxy settings for both http and socks traffic but is a good start.
I would make a new policy for this range and apply a deny for it.

create a new protocol, give it a name, select the port range for outgoing tcp 6891 to 6900 and save it
Create a new access rule, give it a name and select deny, select the new protocol you created, from internal & local host to external, all users.
Apply the policy
0
How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

 

Author Comment

by:samir_santra
ID: 16957686
thanks msn-fle transfer is blocked but still I can send files through yahoo messanger. my requirement is that any messanger should work but all file transfer should be blocked.
0
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 250 total points
ID: 16961831
There is no single policy that will cover every messenger.
yahoo file transfer uses this server
filetransfer.msg.yahoo.com

See
http://help.yahoo.com/l/us/yahoo/messenger/messenger7/messenger/messenger-02.html

Create a deny rule to this url
0
 
LVL 8

Expert Comment

by:charan_jeetsingh
ID: 16967201
for your particular purpose you will require to do some study,

Either you search all the messenger sites and lok for ports used by them for File transfers or install a sniffer on ur machine and try seeing which ports its using to do that....

Cj
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 16981717
Thankyou :)
0

Featured Post

Guide to Performance: Optimization & Monitoring

Nowadays, monitoring is a mixture of tools, systems, and codes—making it a very complex process. And with this complexity, comes variables for failure. Get DZone’s new Guide to Performance to learn how to proactively find these variables and solve them before a disruption occurs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question