Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

irc is forbiden by the pix but still used

In our organisation I permitted only DNS SMTP WWW & POP3 . But I find that one user still use the irc. What's the problem ?

3 REPLIES
Cisco Employee

Re: irc is forbiden by the pix but still used

Could you please provide more info, where are you enforcing this policy? is it on the PIX? or a router using ACL?

Just for your reference, here are the common chat ports you can block;

tcp 6667 (irc) 6660- 6670 (the default being 6667).

tcp 6665-6669 (common IRC)

tcp 5190 (aol)

tcp 5190, dyn >=1024 (aol ICQ)

tcp/udp 5190-5193 (aol)

tcp 1863 (msn)

tcp/udp 4020 (ichat)

tcp 5000-5001 and udp 5000-5010 (Yahoo voice chat)

tcp 5050 (Yahoo messages)

tcp 5100 (Yahoo Webcams)

R/Yusuf

Community Member

Re: irc is forbiden by the pix but still used

Hi

I used this in Pix & perimeter router,

Thanks

Cisco Employee

Re: irc is forbiden by the pix but still used

I would recommend you explicitly deny all the ports i mentioned above for common chat programs, let us know if that helps.

R/Yusuf

107
Views
0
Helpful
3
Replies
CreatePlease to create content