How to Block Chat in the Network

pts.
Tags:
Application security
Database
DataCenter
Encryption
Firewalls
Forensics
Incident response
Instant Messaging
Intrusion management
Microsoft Exchange
Network security
Secure Coding
VPN
Wireless
Dear All, I am wrting this mail to you all, to know if any you have been successfull in Blocking Chats on your networks, and if so, then how have you acheived it? Could you please tell me which Ports to Block for MSN, Yahoo, Rediff, ICQ, Skype. I am using a NetAPPs Net Cache C 1300, and I am trying to block the ports, but I have been unsuccessful. Please Help. Regards, Aditya

Answer Wiki

Thanks. We'll let you know when a new response is added.

Hello,

Here is a website that lists many common ports including some used by chat programs.

http://www.chebucto.ns.ca/~rakerman/port-table.html

Note that these are commonly used ports and blocking them will reduce access to the various chat services, however many of these services will search for open ports beyond what is listed and users may still be able to connect.Trying to block too many ports may cause other issues by interferring with some desired applications or services that may use those ports.

If you have the capability to block by URL or an IP address or address range, you will have better luck shutting chat down. We use our firewall to block unwanted chat sites by address range which works very well.

Good luck!

Discuss This Question: 12  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • FlyNavy
    Not familiar with your appliance, but port blocking will seldom get any current IM or chat clients. There are 2 approaches to solve this. In a large enterprise, it is usually best to employee an appliance built for proxy and application blocking. There are several on the market that provide IM/chat blocking or logging (depending on your company policy and industry requirements). Check the major vendors like Juniper and Cisco, but there are also some good smaller players that may be more affordable. Second approach is to use client software to block or log IM or chat. Again, several options commercially to do this. Unless you have a small network, this usually isn't a viable option. At home I use Cyber Patrol Enterprise, but there are lots of options. Unless you get an enterprise version, maintaining the system will be hard with more than 4 or 5 systems. I have 10 at home and have passed the limit for individually managed nodes.
    0 pointsBadges:
    report
  • Srustan
    You could try disallowing users to install programs.
    0 pointsBadges:
    report
  • Bpelmbr
    This site, and many others, list out the TCP and UDP ports you can block: http://www.chebucto.ns.ca/~rakerman/port-table.html
    0 pointsBadges:
    report
  • Mistoffeles
    You can use group policies (gpedit.msc) to disallow msn messenger to run at all on any computer, and block users from installing any software.
    0 pointsBadges:
    report
  • Jftoze
    Reroute DNS of these addresses to point to somewhere like 0.0.1.1. Domain Name AOL Instant Messenger login.oscar.aol.com toc.oscar.aol.com Yahoo! Messenger scs.msg.yahoo.com scsa.msg.yahoo.com scsb.msg.yahoo.com scsc.msg.yahoo.com MSN Messenger messenger.hotmail.com ICQ login.icq.com
    0 pointsBadges:
    report
  • Mistoffeles
    Or just point them to 127.0.0.1 in your Hosts file. You would also benefit from using this hosts file and then adding those entries to it: http://www.mvps.org/winhelp2002/hosts.htm
    0 pointsBadges:
    report
  • Tuneboo
    I'm needing to know how to block someone from chatting with me on drawsomething2 please someone help
    10 pointsBadges:
    report
  • ToddN2000

    If you are trying to stop chat from one person, some programs allow you to ignore a person. Sometime you click on the user name you want to ignore and then click an ignore button that may pop up.

    8,335 pointsBadges:
    report
  • qasimarshad
    The messenger applications can be blocked through your network firewall/router. The ports used by MSN messenger are 6901& 6891-6900. 
    Netgear has some additonal port information that you may find useful at http://kbserver.netgear.com/kb_web_files... 
    which includes ports for AOL Instant messenger. 
    You will want to test any internet applications after modifying port settings. If you block a port that a different internet application is trying to use it will prevent that application from connecting. Definitely do NOT block port 80 if people need to be able to access any website.
    45 pointsBadges:
    report
  • qasimarshad
    The messenger applications can be blocked through your network firewall/router. The ports used by MSN messenger are 6901& 6891-6900. 
    Netgear has some additonal port information that you may find useful 
    which includes ports for AOL Instant messenger. 
    You will want to test any internet applications after modifying port settings. If you block a port that a different internet application is trying to use it will prevent that application from connecting. Definitely do NOT block port 80 if people need to be able to access any website.
    45 pointsBadges:
    report
  • Genderhayes
    Stop the services from running by the following steps >> Start > Run / OK; services,msc <<. Also, you might want to verify that NetBios over TCP (protocol) is not running and the UDP Broadcast is off.
    6,525 pointsBadges:
    report
  • shujaabidi
    hello friends!!
    My system administrator are blocked chat site port like MIRC, Yahoo messenger please give me solution how i can use chat program system administrator used PFSense software

    10 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following