Blocking GTalk in the LAN

Configure your internal DNS to return 127.0.0.1 for:

1. talk.google.com
2. talkx.l.google.com
3. chatenabled.mail.google.com

Also add the above DNS names in the Web proxy server black list.

To make it more effective:

Google chat uses the following ports and servers for it's chat service. Ports (80, 443, 5223, 5222), Servers (216.239.37.125, 72.14.253.125, 72.14.217.189, 209.85.137.125)

Create two Alias and club all the ports together in one and the IP addresses of the servers in another Alias. Now create a rule in Mettle SE for the local networks where in you block all the traffic from LAN to google chat servers on the mentioned ports. Use the Alias you have created in the firewall rules. To block only google chat file transfers block the ports 20 & 21.

You are recommended to allow only known HTTPS web sites from your LAN through the Web proxy server. This can be done by entering "**s" (without quotes) in the Web proxy server black list and then add the known sites to the white list.

Reference: http://www.google.com/support/talk/bin/answer.py?hl=en&answer=45492