Except email, we want to block every thing for users temporarily through router.If I block all ports from 400 to 65334, skype doesn't work but email also doesn't work.If I open only port 443 among blocked, both email and skype works.
block skype 5.1 in my network. This version of skype doesn't need Administrator rights to be installed. In my network there are 2 ways to Internet, one filtered by a PIX 525 ver 6.3(3) and the other by a ASA 5510 ver 8.3(2). No IPS system present on my network.
I can connect to Internet perfectly fine. I can even VPN back into my office. However, once connected via VPN and I launch my Outlook Client, I'm not able to connect to get emails. When I run a "netstat -a", I get my "SYN_SENT" to all my office domain controllers and exchange servers.However, if I connected via my Starhub USB Broadband dongle, everything works perfectly fine.What settings do I need to do on my router? I tried port forwarding and application rules but none worked.
We are running ISP and now a days we have many spam in our network, we want block the SMTP port 25 block on Cisco router 7200. So we can block the spam in our network.
What is the configuration for allow port from Outside to inside( 80,21,https...) and i want to allow traffic from outside to inside only 80,https and 21.
Any step by step instructions (for the DIR-655) on how to block a PS3 from accessing this router? I know how to log into the router's page and I can get the MAC address of the PS3, but I am clueless from there. I want to block it completely is possible.
I've been searching in google on how to block IDM in my router D-Link DIR-655, i need to block this application because we have a large network here in our office, and i found out mostly of our users when i check have a IDM installed in thier pc and its affecting our internet connection.
While using Skype I am experiencing poor sound quality, sometimes callers are unable to hear me at all and visa versa. There is a lot of cutting out. My internet connection is fine.
I dont currently have access to the router and i was wondering is there a anti-virus program that allows you to block ports to the local pc? Or is there another way to block programs using peer-peer network connections such as PPS.
I just bought an e2500 to replace my WRT54g, hoping that it would fix my call dropping problem. I had tried installing some friend recommended third party firmware on the WRT54g that he said would fix my problem, and with my infinite technological wisdom and experience ended up bricking it.
My problem is that randomly during skype calls with my family back home, I will lose internet connection. It drops the skype call and then I cannot open a web page or anything for about 60 seconds. My internets dead, then it just starts working normally again by itself. I can have anywhere from 60 seconds of connectivity up to 20 minutes or more while skyping. This all happens over a wired connection. Changing the router didn't change a thing, the problem still happens in exactly the same way. I have good bandwidth and all that stuff.Also, I watch netflix on my Xbox 360 over a wireless connection. Sometimes it will just lose connection in the middle of a show. However, the difference is that I can reconnect almost instantly after an interruption on that device. I have fixed the settings on the two different channels according to one of the other post I found in this community, and have not tried those settings out yet. This doesn't worry me as much as the wired connection issues.
I have installed CSA on windows 7 with rule to block rpc port 135.But when i am scannig this host, this port is still opened.I changed OS to Win Vista,Win7 x86, but there is no changes.Is it possible to block port 135 using CSA on windows 7?
is it possible to block outgonig multicast L2 frames on an Ethernet port in outgoing direction on a 2960 Switch?
I tried the "switchport block multicast" command, but the description of this feature relates to only "unknown" multicast!?
But what means "unknown multicast"? Even if activated, I see a lot of multicast traffic going out that port: IGMP, PIM, SSDP, HSRP, OSPF, .. and also pings and VLC streams to multicastaddresses (ip igmp snooping disabled).
I also tried to map a "mac access-list" to that port, but the "mac access-group" interface command is restricted to only incoming traffic.
Reason: we assume, that there are a couple of specific enddevices, that might react strange to some multicast. Therefor we would like to block outgoing multicast on that specific ports.
how to go about setting up the ASA to block any SMTP traffic outbound except for our Exchange Server. This is in relationship to a SpamBot issue that blacklisted us. I have an ASA 5510 running version 6.2(5) / 8.2(2) with three ports. DMZ, Inside and the Outside interface. Up till today, I only needed to block outside traffic to our internal network which I used the ASDM to configure a rule on the outside interface for an incoming rule. I am assuming I need to create an outgoing rule on the outside interface; however, just to make sure I understand the terminology/traffic flow, I created the rule with my computer as the source (192.168.0.131) with ALL destination and the service as HTTP. My logic, which seems to fail here, is that any traffic from my computer going outbound would be blocked; however I am still able to browse... That said, if I were to change the source as the Exchange server and the Service Type to SMTP, it would not actually block traffic and therefore not solve our problem. I even gone as far as permitting traffic from my computer, expanding the hit counter and I see no hits. So I am no doubt doing this wrong. What I do know, is when I first created the rule, a second rule was automatically created (Implicit rule) that deny all sources and blocked all HTTP traffic until I changed it to Permit?
I'm using an ASA5505 (8.4(1)) and would like to block port 80 on a specific host in the LAN so machines in other remote LANs connected via VPN can't access this port on the host. Devices in the local LAN should have access to this port on the host. Here are the commands I'm using:
-access-list block_port extended deny tcp any host 10.20.10.20 eq 80 -access-list block_port extended permit ip any any -access-group block_port out interface inside
These commands are not working as I would expect them to. When I browse to http://10.20.10.20 from a remote machine over the VPN tunnel I am able to access the host web server.
Setup firewall rules that will block all inbound Internet access to the web server except port 443, Setup firewall rules that will block all communication between the two internal networks, except ports 7000 and 1702
I have a layer 3 switch, 3550.I have several vlans on there just for playing around with. One of the vlans, has a vonage linksys box attached to it with a UK number attached. From time to time telemarketers call at 03:00 in the morning, this as I'm sure you can imagine is not much fun. The linksys box gets 192.168.3.3 as it's ip.The switch is connected to a non cisco router at 192.168.0.1
interface FastEthernet0/24 no switchport ip address 192.168.0.2 255.255.255.0
I was thinking a time based access list would work best I have tried several variations but the phone still rings. I have tried access-list 1 deny host 192.168.3.3 permit ..... and more extensive lists but the phone still rings. I have not applied the time-range yet, so that's not the problem.I have applied the list to the vlan interface and to fa0/24 but it's not working.
I have a D-Link DIR-655 with various machines connected via Ethernet and WiFi. Can I disable internet access for selected PCs via the router? I still want them to access the LAN, just not the internet.
How do I block a particular IP from accessing my network entirely? I have a hacker with a known IP I want to shut out. I tried creating a DENY inbound filter (with just that IP as the range) but that didn't seem to work. that hacker kept being able to attempt logins.
In the new firmware version is there a way to turn off or not allow anyone to ping my router by blocking any private type of IP address? Which also include loopback addresses?
I would like to block incoming traffic from a specific ip on a specific port
This is what I have
source: interface: wan ip address range: 5.xxx.xxx.226 - second one is empty (valid ip instead of x's) protocol: tcp
dest: interface: lan ip address range: both fields empty port range: 139 - empty field
ON and DENY box is ticked name field has some text in it
I click save and get this pop-up: Incorrect source ip address. Invalid format of the start IP address. Current Firmware Version : 2.11 The ip is obviously valid, what should I do?
I have a DIR-615 router. I would like to know if it is possible to block a PS3 from accessing the internet completely, without blocking any other computers/devices. I have access to the router, but not to the PS3 itself.
I have been trying to block access to Steam and Left 4 Dead 2 on a specific computer, using the correct listed ports and using the port forwarding section of the router (setting the access to deny) however they seem to still be able to access both steam and L4D2 on their computer.how I can still block the access?
Bought DIR-655 from Amazon. Rev. B. Come with 2.00NA firmware. Updated to latest one, and there are a lot of problems, to most of them, I was not able find any solution. Here they start:
1. WIFI SPEED PROBLEMS.No matter what speed, parameters, channel, mode, etc I select, router keeps working on 20mhz channel width. So I never get speeds above 65 mbit. In absolutely same conditions, my DIR-300 B1 (with DD-WRT firmware) gives me stable 150mbit. SO I KINDLY ASK, MAYBE THERE IS A WAY TO FORCE "40 MHZ ONLY" OPTION?
2. PASSWORD PROBLEMS.Router came with no admin password, I enter new password, hit "update" it says - wait 20 sec, after that, login page is displayed, but, new pasword does not works! since it asks again for empty password!
3. FILTERING PROBLEMS.I need to block certain IP address to be accesed by all my computers. Say this is 111.111.111.111 . So I added inbound filter rule, to block access to that IP. It does not works - IP is still accesible.
4. MORE FILTERING PROBLEMS.Since above mentioned method does not works, I have to use "ACCESS CONTROL" feature. It does works, but it causes another problem, with access control enabled, all webpages with form submit stop to work. For example, if I'll have that feature enabled, when I press "post" on this webpage, it instantly will go to "this page cannot be displayed".
I bought this router solely for one purpose - I was happy with speed of my DIR-300, but I needed gigabit for my computers. So I thought, instead of buying separate switch, I'd better buy a router with gigabit. I was suggested to get TP-LINK 1043, since it's quite popular, alternate firmwares available and so on, but I refused to buy it, since I thought that some chinese company does not worth my attention. So I bought this D-Link (for almost 2x price of TP-Link) and having huge problems as you can see.
How to configure the 825 to block inbound traffic from a specific internet IP address ?i noticed an IP and MAC that i don't recognize that is listed as a connection to my NAS's media server ...i blocked it in the NAS configuration page, but i don't want any unsolicited traffic into my network.