From owner-freebsd-questions Wed Aug 15 0:35:36 2001 Delivered-To: freebsd-questions@freebsd.org Received: from web11001.mail.yahoo.com (web11001.mail.yahoo.com [216.136.131.51]) by hub.freebsd.org (Postfix) with SMTP id 60FC737B407 for ; Wed, 15 Aug 2001 00:35:32 -0700 (PDT) (envelope-from fasi_74@yahoo.com) Message-ID: <20010815073532.91437.qmail@web11001.mail.yahoo.com> Received: from [203.135.48.13] by web11001.mail.yahoo.com; Wed, 15 Aug 2001 00:35:32 PDT Date: Wed, 15 Aug 2001 00:35:32 -0700 (PDT) From: faisal gillani Subject: Re: firewalls + MSN Messenger To: Mark Hughes , Richard Shea , freebsd-questions@FreeBSD.ORG In-Reply-To: <009301c12526$feff8c70$e4a5fea9@mark2> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG msn messenger can be configured to use the http protocol port ... like i use port 8080 . msn messenger by the way have a bug of not working with voice or file transfer in a proxy environment .. read the artical for more detail .. the solution is there but doesnt work for me :-) http://support.microsoft.com/support/kb/articles/Q278/8/87.ASP?LN=EN-US&SD=gn&FR=0&qry=msn%20messenger%20NAT&rnk=2&src=DHCS_MSPSS_gn_SRCH&SPR=MSALL --- Mark Hughes wrote: > > Hi - Does anyone know what tcp/udp ports products > such as MSN Messenger > use ? AOL have something similar although I can't > remember the name they > give it. > > > > I want to be sure I've got these blocked on my > firewall. > > You could have a problem there....as far as I know > MSN will use ANY port it > can find, if you block off everything but say port > 80 it'll go right ahead > and use that, or whatever. So I'm told... > > However, you could block access to the MSN servers - > rather than blocking > the ports if you just block all traffic to... > > 64.4.13.0/24 > > for MSN Messenger, this should work...well, that's > what I use to ALLOW > access to it with IPFW (dynamic rules timeout > causing all manner of > weirdness on the part of messenger, so I've added in > a permanent hole to > that netblock. probably many screamingly good > reasons why i shouldn't do > that however it's not a majorly important machine > for anything). > > YMMV, and I could be wrong, etc. > > AIM is the AOL one, and I think that also uses > something similar to find > ports it can use. > > Of course, a third way of handling it is by having > an AUP and enforcing it > with your users, and this way works irrespective of > what ports are used :) > > HTH, > Mark > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of > the message __________________________________________________ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message