Results 1 to 5 of 5

Thread: Cisco

  1. #1
    Regular Member
    Join Date
    Oct 1999
    Posts
    223

    Cisco

    Needs some access-list help.

    I want to block AIM use on 3 pc's on our network.

    I know the port is 5190 but can't seem to get it right.

    HELP APPRECIATED


    My thought was to block port 5190 from the three ip's on our network.

    Any better way to go about it?

  2. #2
    Regular Member
    Join Date
    Jul 2001
    Location
    Dallas
    Posts
    158
    This should work

    access-list 101 deny tcp any host x.x.x.x(the IP of the computer you on you network) eq 5190

    *repeat* this process changing the "host x.x.x.x" portion to match each of the computers you don't want to be using aim.

    access-list 101 permit ip any any


    int s0/0 (use whichever interface will have aim coming into it externally)
    access-group 101 in


    This should work for you, but *don't* forget the final line of the access list must be access-list 101 permit ip any any.

  3. #3
    Regular Member
    Join Date
    Oct 1999
    Posts
    223

    thanks

    Thanks alot......

    I had something similar but my last line was


    access-list 101 permit tcp any any


    which was blocking ALOT of IP traffic.....


    thanks again

    Chris

  4. #4
    Regular Member
    Join Date
    Oct 1999
    Posts
    223

    Damn

    Spoke to soon.....

    Didn't block traffic properly.

    I know the login server makes its connection on port 5190.

    Anyone have any experience with blocking AIM?

  5. #5
    Regular Member
    Join Date
    Jul 2001
    Location
    Dallas
    Posts
    158
    Sorry, I don't. Do you have access to a sniffer? When we need to block or allow an app we use our sniffer to see which ports it uses.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •