That was the point ... Easier said than done, but Skype requires a 'directory' server to setup the connection. If you block access to the Skype directory serers, you effectively block Skype.
Finding and keeping up with Skype 'servers' will be a frustrating effort involving log analaysis, DNS digging, possible tcpdump sniffing, etc. I asked earlier if GnatBox would randomize or otherwise obscure port to internal computer mapping and didn't get an answer. Skype is able to bust firewalls w/o using an intermediate relay by taking advantage of the fact that most NAT implementations reuse the same port for outbound UDP traffic from a given internal host/port combination. If your fire wall protected UDP ports, you could prevent your systems form serving as Skype relays while perhaps not interfering with legitimate organizatal use of Skype. Dave Morris On Tue, 5 Jun 2007, Wilson Mosquera wrote: > Thanks Richard > > About your tip, If I block the port 80, how can I surf the web? > > Regards, > > Wilson > > -----Original Message----- > From: Richard Ashley [mailto:[EMAIL PROTECTED] > Sent: Tuesday, June 05, 2007 3:29 PM > To: [email protected] > Subject: RE: [gb-users] How can I block windows live messenger > > As far as I know, both of them can sneak through port 80 to some degree. > I'm curious to hear if anyone has a solid solution to this. > > > -----Original Message----- > From: Wilson Mosquera [mailto:[EMAIL PROTECTED] > Sent: Tuesday, June 05, 2007 4:07 PM > To: [email protected] > Subject: [gb-users] How can I block windows live messenger > > > Hi forum > > > > > > How can I block Windows live messenger and skype ? > > > > Regards, > > > > Wilson Mosquera > > TECNOAV > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://archives.gnatbox.com/gb-users/ > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://archives.gnatbox.com/gb-users/ > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://archives.gnatbox.com/gb-users/ ------------------------------------------------------ To unsubscribe: [EMAIL PROTECTED] For additional commands: [EMAIL PROTECTED] Archive: http://archives.gnatbox.com/gb-users/
