Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
549
Views
4
Helpful
4
Replies

How do I block Skype

mell0n
Level 1
Level 1

‎02-24-2006 06:36 AM - edited ‎03-09-2019 02:03 PM

I'm concerned about users implementing Skype on our network, what measures can be taken to prevent this?

Labels:
0 Helpful
4 Replies 4

Bobby Thekkekandam
Cisco Employee
Cisco Employee

‎02-24-2006 09:16 AM

Hi,

On a router, you can use nbar to match on the Skype protocol and then you can either block or limit the stream coming into your network.

Below are 2 links. One that talks about nbar and how to deploy it and the second is a link to the Skype pdlm file to add to you router so that nbar can use this file to match the traffic.

Link on how to ebable nbar on your router.

http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_configuration_guide_chapter09186a00800c75d0.html

Link to the pdlm download for the Skype pdlm file

http://www.cisco.com/cgi-bin/tablebuild.pl/pdlm

-Bobby

Hope that helps, please rate helpful posts.

0 Helpful

mell0n
Level 1
Level 1
In response to Bobby Thekkekandam

‎02-27-2006 05:29 AM

Thanks for the assistance, I'm unable to locate the file specified in the second link. Any thoughts?

0 Helpful

Bobby Thekkekandam
Cisco Employee
Cisco Employee
In response to mell0n

‎02-27-2006 06:08 AM

Hi,

I double checked, and I had seen the readme for skype in the pdlm download page. Turns out that there's actually no separate pdlm file for Skype, it was added directly into the IOS. You need at least

12.4(4)T to get Skype support in NBAR. This is documented here :

http://www.cisco.com/en/US/products/ps6441/prod_bulletin09186a00804a8728.html#wp1064474

"Skype Classification via NBAR Packet Description Language Modules Skype is a popular VoIP telephony service that allows users to speak, send instant messages, and/or send files to one another via the Internet. This functionality provides the ability to recognize Skype application traffic in Cisco IOS Software. The NBAR PDLM for Skype classification is

integrated into Cisco IOS Software. There will not be a downloadable PDLM for Skype because of infrastructure changes required to accommodate Skype application classification."

HTH,

Bobby

mell0n
Level 1
Level 1

‎03-01-2006 07:07 AM

Thanks again for you assitance

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents