Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 1839 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

question about IM/P2P?

techuser
just a quick question: if I disable the IM/P2P control on astaro and didn't have any NAT or PF rule to allow the traffic and the users are using the HTTP proxy
can they still be able to use IM or P2P applications? 

and if I enabled the IM/P2P control and set the action to "don't block" do I  have to create PF and Nat rules? or "don't block" creates implicit rules?

does IPS has any effect on IM/P2P?


This thread was automatically locked due to age.
Parents
  • 0
    Most IM and P2P apps need ports other than HTTP/HTTPS, although at least some IMs can will try HTTP if all else fails.

    The IM/P2P control is to RESTRICT those apps.

    If you want to allow them, you should setup packetfilter rules plus Masquerading, 
    OR setup the SOCKS proxy.

    Barry
  • 0 in reply to BarryG
    Most IM and P2P apps need ports other than HTTP/HTTPS, although at least some IMs can will try HTTP if all else fails.

    The IM/P2P control is to RESTRICT those apps.

    If you want to allow them, you should setup packetfilter rules plus Masquerading, 
    OR setup the SOCKS proxy.

    Barry



    Hi BarryG

    MSN messenger
    ---------------
    I am using IM/P2P control to restrict all but msn messenger. I have no Masquerading and I have set pf rule for msn traffic (msn connects directly,no socks).
  • 0 in reply to wingman
    Wingman, I think I'm confused - you aren't using masquerading - so you are exposing your internal network to the public?
  • 0 in reply to BAlfson
    Wingman, I think I'm confused - you aren't using masquerading - so you are exposing your internal network to the public?


    Hi Balfson
     
    You are absolutely right.i do use masquerading.sorry for the confusion there
  • 0 in reply to wingman
    OK... I think you're asking if the HTTP proxy will allow IM traffic if the IPS/IM/P2P restrictions are enabled.

    I _think_ the IPS will block the traffic even if the proxy is running.

    Barry
Reply Children
No Data