Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

how can i prevent messenger communications

dear experts, i'm using ASA 5520 and i want to deny the msn and yahoo messengers without affecting the hotmail or yahoo websites access, so i want to know the specific ports which i should deny and on which transport layer protocols (tcp or udp), i appreciate ur urgent answer because this is very important for me in my security work, thanks alot

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: how can i prevent messenger communications

Hi

I think, you can get the list of port numbers from google.

But you can try the following:

class-map type inspect im match-any yahooandmsn

match protocol msn-im

match protocol yahoo-im

policy-map type inspect im yahoomsn

parameters

class yahooandmsn

reset

With regards

Kings

2 REPLIES
New Member

Re: how can i prevent messenger communications

Hi

I think, you can get the list of port numbers from google.

But you can try the following:

class-map type inspect im match-any yahooandmsn

match protocol msn-im

match protocol yahoo-im

policy-map type inspect im yahoomsn

parameters

class yahooandmsn

reset

With regards

Kings

Re: how can i prevent messenger communications

You can configure ASA using Modular Policy Framework (MPF) in order to block the Peer-to-Peer (P2P) and Instant Messaging (IM), such as MSN Messenger using class inspection policy map..

see this http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808c38a6.shtml

246
Views
0
Helpful
2
Replies
CreatePlease login to create content