ASG 120
3 vlans on eth0 grouped in a network definition call internal networks
1 lan segment on eth2 call WiFi hotspot (172.16.16.0/24)
IM/P2P Settings
Settings Options:
Controlled networks ANY
Nothing in Controlled skip list
Instant messaging settings:
Protocol all set to block completely
Exceptions entry
Skip these protocols all checked and source network set to eth2 network definition (172.16.16.0/24
Peer to Peer settings:
All set to Block All with no exceptions
I am getting Snort notifications like this:
Message........: POLICY AOL Instant Messenger Message Send
Details........: www.snort.org/.../sigs.cgi
Time...........: 2009:11:12-14:34:50
Packet dropped.: yes
Priority.......: 1 (high)
Classification.: Potential Corporate Privacy Violation IP protocol....: 6 (TCP)
Source IP address: 172.16.16.2
Where am I missing the settings to allow IM on the wifi hotspot nic but not anywhere else? I still want to block peer-to-peer traffic globally.
This thread was automatically locked due to age.
