Solved

Block Skype Fortigate version 4 MR1

Posted on 2010-08-25
5
5,998 Views
Last Modified: 2013-11-09
Hi,

I am trying to configure a Fortigate 110C to block Skype traffic from exiting the LAN. All attempts to use application control to block P2p/Skype and apply that to a firewall protection profile have failed. The OS is 4.0 MR 1 Patch 6.

0
Comment
Question by:dlg654
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 3

Expert Comment

by:sasi_kmr
ID: 33528530
check to which ips they get connected and block that ip.

0
 

Author Comment

by:dlg654
ID: 33528550
Alas that can change. I am looking for a more generic solution
0
 
LVL 3

Expert Comment

by:sasi_kmr
ID: 33528574
i easiest way to block is to block 80 port.

else change the port number to something else in all the skype installation.

which ever is easier.

thanks,
$a$i
0
 
LVL 4

Expert Comment

by:goyal_251
ID: 33528597
Block 5060 TCP and UDP port.it will block SIP port
0
 
LVL 4

Accepted Solution

by:
iworks-uworks earned 250 total points
ID: 33531875
Configure the application control to block skype. Assign it to the protection profile of the policy that you want to block.
You MUST clear all sessions of the policy before it will work. Disable and re-enable the firewall policy (make sure you won't be disconnecting yourself) OR restart the firewall. I tested on a Fortigate 80C 4.0 MR1 Patch 4 and confirmed it.
If that doesn't work let me know.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco ASA 5506W VPN Clients not seeing local network 12 71
Routing between two networks? 10 90
Which the best UTM recommended ? 2 126
Setting up a VPN 60 205
Months ago my boss came to me with a simple request, “How can we minimize GoTo meeting accounts and also improve our integration and collaboration initiatives?”  Well the answer, with some research, was easy… Lync.  Lync provided us all the necessar…
Messaging apps are amazing tools with the power to do a lot of good, but the truth is the process of collaborating with coworkers requires relationships established through meaningful communication - the kind of communication that only happens face-…
The goal of the tutorial is to teach the user how to instant message and make a video call in Skype.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question