Re: Block instant messaging with Pix 7?

After much searching, I found the "port-misuse" command in the Cisco
Security Appliance Command Reference 7.0.4.

When you're in http-map configuration mode, enter:

port-misuse im drop log

This will prevent Yahoo Messenger, AIM, and MSN from hiding their
packets in HTTP traffic, but can really impair performance on the Pix.

Which is all great... but unless there's some other global way to check
packets, I'll still need to block several ranges of ports, and not be
certain that this will work.

Marc Teale
Received on Tue Feb 7 20:59:23 2006