These are the ports you need to block for the file transfer feature:
- MSN Messenger version 5 uses ports 6891 through 6900.
- MSN Messenger versions 6.2, 7.0, and 7.5 use TCP ports 6720 through 65535 or UDP ports 31000 through 31500.
Note: MSN Messenger chooses the appropriate range of ports based on the MSN Messenger version and the type of connection. If a direct connection is not possible, MSN Messenger transfers the file at a rate of 120 packets per minute, with each packet limited to 1300 bytes, through the switchboard server. MSN Messenger also uses the switchboard server for instant messaging.
These are the Internet ports that MSN Messenger for Windows uses.
Sign in to the MSN Messenger service:
- Port 1863 or the HTTP port
Note: The HTTP port is typically port 80.
Audio and video conferencing:
- UDP ports 5004 through 65535
Webcam and video conversations:
- MSN Messenger will try to connect on ports 80 or 8080. If those ports do not work, Messenger will try to connect on TCP ports 5000 through 65535. If those ports do not work, MSN Messenger will transmit webcam and video conversations through a reflector server on ports 9000 or 9001.
- Port 1503
- Port 1503
- Port 3389
MSN Messenger can user port 80...
you will need to block the domain for MSN servers...
I tried to block MSN File transfert and this is IMPOSSIBLE! (Cisco engineer confirmed that fact)
reason: file transfert are not done directly. You pass the transaction to a MSN server and then the other PC
It is a bit difficult to block this stuff at the firewall, but if you have a ciso router, then all is good. You should check out nbar. It is awesome. It is very flexible. It also solves the p2p file sharing issues...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...