Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 314
  • Last Modified:

Block port 25 for training

I'm a trainer part time and have consistently to be patient and put up with folk claiming they're paying attention while I know they're e-mailing. I'm good at my job and give good and interesting lessons but other than taking my clothes off to illicit attention I'd like a safe way to block and unblock port 25 during class remembering that I'm sometimes at a client site.



Any suggestions would be appreciated and also help those with mild ADD learn Excel, Word etc.
0
macmic
Asked:
macmic
  • 4
  • 4
  • 2
  • +1
1 Solution
 
Andres PeralesCommented:
well if you are using a mobile classroom that has a closed network you can put a firewall in place between the clients network port that they give you for access and the switch where your test boxes would hook into...
0
 
macmicAuthor Commented:
No, I can't interfere with others networks too much. I'm thinking either Windows firewall or group policy. something I can quickly add and remove. Cheers though
0
 
Andres PeralesCommented:
Windows firewall would work as long as the user accounts the users are using do not have admin rights to the change the windows firewall, are all of these boxes windows xp or vista boxes?  If so you can consider Steadystate....
http://www.microsoft.com/windows/products/winfamily/sharedaccess/default.mspx
 
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
kuknoCommented:
Hi,

use WinArpSpoofer, to "announce/mask" the trainer PC/Laptop as the default gateway. Then all packtes of the clients will be routed to your PC. You can then decide what to do with them. Assuming you can run a decent firewall on your PC, you could simply drop SMTP and re-route the rest to the legitimate router.

     http://www.nextsecurity.net/software/Windows_ARP_Spoofer.html

Here is a list with some other arp poisioning tools.

http://www.l0t3k.org/security/tools/arp/

Regards
Kurt
0
 
macmicAuthor Commented:
Yeah in our own office that would be cool but I can't add software to computers at client sites. Good recommend though for future stuff
0
 
macmicAuthor Commented:
kukno - yeah but for a client site I'd be tampering on their network. I'd just like a sneaky yet acceptable block on the individual PC if you get my gist
0
 
InterservCommented:
you would want to block port 80 and 443 as well because hotmail, gmail, Outlook Web Access and many more use the web and not port 25 for email.  You could do this with a GPO by setting up a proxy or adding an ip in the proxy settings that does not exist.  Just remember if you set up a proxy using GPO, you need to manually remove the proxy settings when you stop enforcing the GPO.
0
 
macmicAuthor Commented:
Interserv: how to using GPO mate?
0
 
kuknoCommented:
>I'd just like a sneaky yet acceptable block on the individual PC if you get my gist

o.k., then block the ports with the IPSEC subsystem.

http://support.microsoft.com/kb/813878

HOWEVER: You must install ipseccmd.exe and possibly netdiag on the clients!

http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=7D40460C-A069-412E-A015-A2AB904B7361

Filter for port 25 should be:

IPSeccmd.exe -w REG -p "Block SMTP" -r "Block Outbound SMTP" -f 0=*:25:TCP -n BLOCK


0
 
kuknoCommented:
running ipseccmd.exe from a USB stick is actually not "installing" any software.
0
 
kuknoCommented:
running ipseccmd.exe from a USB stick is actually not "installing" any software.
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

  • 4
  • 4
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now