[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

Blocking MSN / Yahoo Messenger

Posted on 2008-10-07
8
Medium Priority
?
1,531 Views
Last Modified: 2012-05-05
Hi,

Can anyone details how I block both MSN & Yahoo Messenger on my PIX 501 running V6.3

Thanks in advance
0
Comment
Question by:dt3itsteam
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 1

Assisted Solution

by:Cvif3v3r
Cvif3v3r earned 80 total points
ID: 22663654
This link tells you the Ports and IP addresses for MSN and Yahoo Instant Messenger. How to do it specifically on the Pix 500, I do not know, but I hope this helps at least.

http://www.windowsreference.com/security/how-to-block-yahoo-and-msn-messangers-in-a-firewall/
0
 
LVL 12

Assisted Solution

by:Pugglewuggle
Pugglewuggle earned 240 total points
ID: 22666124
You should be able to setup a default inspection rule to block this... the ASA has predefined rules in the ASDM that are designed to block certain kinds of traffic such as this and other things like bittorrent and limewire... you just need to enable them.
If you go to the configuration tab in the ASDM and the go to firewall >> advanced you will find the inspection section... it should be fairly easy to setup blocking as the different items are listed by name.
Let me know if you have any questions! Cheers!
0
 
LVL 5

Accepted Solution

by:
devangshroff earned 180 total points
ID: 22667150
but these mesanger keep on changeing port , so will ASA will block this.
0
Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

 
LVL 1

Author Comment

by:dt3itsteam
ID: 22668142
Can someone post me the Cisco command lines for the required statements?
Many thanks!
0
 
LVL 5

Assisted Solution

by:devangshroff
devangshroff earned 180 total points
ID: 22668175
class-map type regex match-any msn_exempt_list
match regex msnuser1 "booobs\@gmail.com"
match regex msnuser2 "user\@hotmail.com"

class-map type inspect im match-all MSN_BLOCK_CLASS
description "blabla"
match protocol msn-im
match login-name regex class msn_exempt_list

policy-map type inspect im MSN_BLOCK_POLICY
description "Policy blocking MSN IM"

class MSN_BLOCK_CLASS
drop-connection

service-policy MSN_BLOCK_POLICY interface outside
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22671860
booobs@gmail.com? Are you crazy devangshroff?
While these commands will work, that's awesomely funny! What's up with that? :-P
0
 
LVL 12

Assisted Solution

by:Pugglewuggle
Pugglewuggle earned 240 total points
ID: 22671882
One other thing - that only blocks IM for booobs@gmail.com and user@hotmail.com...
You need to have a wildcard regular expression.
Here is the Cisco article on Regular Expressions.
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080940e04.shtml
Let me know if you have any questions!
Cheers!
0
 
LVL 12

Assisted Solution

by:Pugglewuggle
Pugglewuggle earned 240 total points
ID: 22672034
Oh - check this out - here is a screenshot from my ASDM - there is a default rule for blocking MSN Messenger, Yahoo Messenger, and lots of other things.
Just activate these policies. No need for booobs or devangshroff's commands. Lol.
Cheers! Let me know if you have any questions!

Untitled.jpg
0

Featured Post

Q2 2017 - Latest Malware & Internet Attacks

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out our latest Quarterly Internet Security Report!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question