Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

peer-to-peer file-sharing

What is the best way to block "peer-to-peer file-sharing" on a PIX??

1 REPLY
Silver

Re: peer-to-peer file-sharing

It's very difficult because you'll need to block alof of ports because there are alot of different apps. Most apps allow the client to change the port it uses anyway. The most effective without spending dollars is to use a closed-access policy. Define what should be allowed to exit the network, and let everything else be implicitly denied. For business purposes, only a few ports are necessary outbound. UDP/53, TCP/80, TCP/443, TCP/25, etc. Of course we could list several more, the point being it wouldn't take much to define what should leave. All else will be dropped including file shares unless they use one of these reserved ports.

Also, search for a post on here by beth-martin. She listed several apps and ports known to be used.

191
Views
0
Helpful
1
Replies
CreatePlease login to create content