Mettle Knowledge
Search:     Advanced search
Browse by category:

Blocking GTalk in the LAN

Views: 1895
Votes: 0
Posted: 18 Jun, 2012
by: Knowledge M.
Updated: 03 Aug, 2012
by: Knowledge M.
Configure your internal DNS to return 127.0.0.1 for:

1. talk.google.com
2. talkx.l.google.com
3. chatenabled.mail.google.com

Also add the above DNS names in the Web proxy server black list.

To make it more effective:

Google chat uses the following ports and servers for it's chat service. Ports (80, 443, 5223, 5222), Servers (216.239.37.125, 72.14.253.125, 72.14.217.189, 209.85.137.125)

Create two Alias and club all the ports together in one and the IP addresses of the servers in another Alias. Now create a rule in Mettle SE for the local networks where in you block all the traffic from LAN to google chat servers on the mentioned ports. Use the Alias you have created in the firewall rules. To block only google chat file transfers block the ports 20 & 21.

You are recommended to allow only known HTTPS web sites from your LAN through the Web proxy server. This can be done by entering "**s" (without quotes) in the Web proxy server black list and then add the known sites to the white list.

Reference: http://www.google.com/support/talk/bin/answer.py?hl=en&answer=45492
Also read
document Blocking Yahoo! IM from the LAN

Others in this Category
document Monitoring The Internet Usage
document Fine Tuning The Content Scanner
document Setting Up Mettle SE Stack for Active/Passive Fail-Over
document Connecting & Securing a Leased Line Connection to Mettle SE
document Blocking Yahoo! IM from the LAN
document NTP Client/Server
document Captive Portal
document Virtual IP Address
document Creating Tagged VLANs
document Wake On LAN
document Changing default Web UI Port and Protocol
document Mettle SE Module Updates
document Mettle SE Log Graphs
document Backup and Restore Mettle SE Running Configuration
document Remote Event Logging To Remote Syslog Server
document Dynamic DNS Client
document LDAP Server Configuration
document Gateway Antivirus: Basic configuration



RSS