Actually, it's not as hard as it seems.
Here's a paste of an email from another group which explains how to block
ICQ2000 completely.
It works.
<PASTE>
Blocking ICQ2000 is easy.
Define a Network object (lets say "NetICQLogon") as 205.188.153.0 mask
255.255.255.0
Then add a rule just below your stealth rule as this
InternalNets NetICQLogon Any (Drop/Reject)
This will kill all access to ICQ:s logon servers, which in effect will
disable all access to ICQ from your network.
<ENDPASTE>
Place the rule before any user rules and watch as ICQ stops working.
Mike
> -----Original Message-----
> From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]]
> Sent: a iae 31 2000 8:52
> To: Firewalls (E-Mail)
> Subject: ICQ2000?
>
> Hi all!
>
> I've tried out the new ICQ2000-client, that according to ICQ works better
> behind Firewalls. They didn't lie... and that's my problem.
>
> I want to stop people in my net from using ICQ, but still keep TCP-Ports
> like Telnet open for my users. The Configuration Tool for ICQ2000 is able
> to
> find such open TCP-Ports and only needs one open TCP-Port for
> communications.
>
> Has anybody got an idea for stopping this tool on a single Paket-Filter?
> The
> only idea I had so far is blocking the whole Netblock the ICQ-Servers
> might
> use. But somehow I don't think my users would be happy if I block the
> whole
> of AOL ;-). An email to ICQ-Support didn't get a reply.
>
>
> Mit freundlichen Gru?en / Yours sincerely
>
> Juergen Nieveler
> arXes Information Design AG
> UB eCommerce
> Tel.: +49/241/16008-136
> Fax: +49/241/16008-100
> Email: [EMAIL PROTECTED]
> Web: www.arxes.de
> PGP:
> 2AAB A988 0B80 D53F FC53 3BED 8CC0 2092 922D 8378 (DH)
> 5ADF A15E 91E4 98DB 2391 0D29 8B08 A884 (RSA)
> Disclaimer: Views are mine, not my employers?
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
