Instant messaging and p2p

Unanswered Question
Mar 21st, 2007

iam still new in this security world.

i am using cisco ASDM 5.0 for ASA.

How can i block Instant messenging like Yahoo messenger and msn messenger.

and also how can i block p2p apllication in my network envirenmont?

lastly how can i monitor network utilize based on the IP addreess... thnks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
astroman Fri, 03/23/2007 - 12:55

This will be tough to do with an ASA. I'm not saying it can't be done...it may be a very manual, tedious process.

Consider adding an IPS sensor (AIP-SSM)...this will give you better visibility. IDS/IPS can deep packet inspect on application layer protocols. You can easily block IM and P2P with something like that...

You could also look into configuring NBAR on a core router, which can be configured to block P2P, for example.

Here's a link on NBAR (Network Based Application Recognition):

http://www.cisco.com/en/US/products/ps6616/products_ios_protocol_group_home.html

Actions

This Discussion