Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Blocking SKYPE with PIX 515 , v 7.22 - ASDM 5.22

Hello,

I Had to block All Skype Trafic in my network.

I only have a Cisco PIX 515 (v 7.22 - ASDM 5.22), no router.

I had seen there is a way to block skype with NBAR cisco's IOS router, but what about PIX ?

I need to find a way to block this ,

Greats thanks for your answers,

Christophe Dumonet.

3 REPLIES
Silver

Re: Blocking SKYPE with PIX 515 , v 7.22 - ASDM 5.22

To my knowledge there is not currently anything like the NBAR for the firewalls. I have heard of blocking the skype auth servers. Even though they are peer to peer they still have to auth with skype. Of course who knows how often they change those.

New Member

Re: Blocking SKYPE with PIX 515 , v 7.22 - ASDM 5.22

You can try to block SKYPE with the ASA using MPF (MOdular Policy Framework). The ASDM has default file sharing REGEXs configured that may help. The best way to block these types of apps are with the AIP module. Cisco has quite a few signatures for the AIP module that deal with this type of issue. If you need more specific instructions on how to configure your http inspect to do this, let me know.

Bryan

New Member

Re: Blocking SKYPE with PIX 515 , v 7.22 - ASDM 5.22

Hello, greats thanks to you for reply.

I'm not familiar with AIP module, so I need your help to know how configure my http inspect to to this,

I really had to block skype !

Thanks for your help ,

Christophe Dumonet.

294
Views
0
Helpful
3
Replies