Two ways to go about it. First, block ALL outgoing ports and open only those needed to work (port 80 from the Squid machine, etc.) Second, have management reprimand the people that have these programs installed on their computers. If they continue them, management has to take action. Also, they should put out a definitive policy on such use first and then give a "week amnesty period". The only truly effective way to deal with such programs is through management. Put will find out emule isn't so great when it costs them their jobs. ----- Original Message ----- From: "Luca Ferrari" <fluca1978@xxxxxxxxxxx> To: <linux-admin@xxxxxxxxxxxxxxx> Sent: Monday, November 22, 2004 5:27 AM Subject: how to protect against peer-to-peer? > Hi, > in my network users are increasing the amount of peer-to-peer traffic (e-mule, > winmx), how can I deny the above traffic? I'm using iptables and squid on my > linux firewall, but I don't know if there's a specific port to lock or > something else I can use to recognize the "bad" packet in the network > traffic. > > Thanks, > Luca > -- > Luca Ferrari, > fluca1978@xxxxxxxxxxx > > > - > : send the line "unsubscribe linux-admin" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html - : send the line "unsubscribe linux-admin" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
