Like Rob also mentioned, your best bet though would be NAC, that way via the assessment scan, you can make it mandatory for the NAC agents installed on your computers to automatically stop/shutdown know P2P processes or services.
Thanks, Jason Rearick Network Engineer Home Office: Info Center Utica National Insurance Group P.O. Box 530 Utica, NY 13503 Email: [email protected] Phone:315-734-2704 From: Patrick Printz <[email protected]> To: "Enterasys Customer Mailing List" <[email protected]>, Date: 09/13/2012 08:50 AM Subject: RE: [enterasys] Blocking bittorrent and P2P I have both. I guess my concern was that bittorrent and P2P are adapting and can use such a wide range of ports, even port 80. Just didn?t know if there was anything beyond blocking the default ports that people have tested. I will definitely look in oneview though. Thanks. Patrick Printz Network Infrastructure Quinsigamond Community College 670 West Boylston Street Worcester, MA 01606-2092 w. 508-854-7517 c. 508-726-9529 "If a man is called a street sweeper, he should sweep streets even as Michelangelo painted, or Beethoven composed music, or Shakespeare wrote poetry. He should sweep streets so well that all the hosts of heaven and Earth will pause to say, Here lived a great street sweeper who did his job well." ~Martin Luther King, Jr. From: [email protected] [ mailto:[email protected]] Sent: Thursday, September 13, 2012 7:08 AM To: Enterasys Customer Mailing List Subject: Re: [enterasys] Blocking bittorrent and P2P Do you own Netsights Policy Manager, and or Oneview? Because with just Policy Manager, you can build the service and rule to block it, and if you have Oneview and run netflow, you can right click on the flow and make the rule quickly. Thanks, Jason Rearick Network Engineer Home Office: Info Center Utica National Insurance Group P.O. Box 530 Utica, NY 13503 Email: [email protected] Phone:315-734-2704 Sent from my iPhone On Sep 13, 2012, at 6:43 AM, "Patrick Printz" <[email protected]> wrote: How do you block bittorrent and P2P traffic? Is it something that can be done via policy or ACL?s? I know I could do it with a packet shaper, but we do not have one yet. I am just curious is someone else has thought of some ingenious way of keeping this traffic contained. Patrick Printz Network Infrastructure Quinsigamond Community College 670 West Boylston Street Worcester, MA 01606-2092 w. 508-854-7517 c. 508-726-9529 "If a man is called a street sweeper, he should sweep streets even as Michelangelo painted, or Beethoven composed music, or Shakespeare wrote poetry. He should sweep streets so well that all the hosts of heaven and Earth will pause to say, Here lived a great street sweeper who did his job well." ~Martin Luther King, Jr. --To unsubscribe from enterasys, send email to [email protected] with the body: unsubscribe enterasys [email protected] --To unsubscribe from enterasys, send email to [email protected] with the body: unsubscribe enterasys [email protected] --To unsubscribe from enterasys, send email to [email protected] with the body: unsubscribe enterasys [email protected] --- To unsubscribe from enterasys, send email to [email protected] with the body: unsubscribe enterasys [email protected]
