From owner-freebsd-questions Tue Feb 27 12: 2:11 2001 Delivered-To: freebsd-questions@freebsd.org Received: from intersys.com (gateway.intersys.com [198.133.74.253]) by hub.freebsd.org (Postfix) with ESMTP id A1C2137B718 for ; Tue, 27 Feb 2001 12:02:07 -0800 (PST) (envelope-from bojar@intersys.com) Received: by gateway.intersys.com id <115283>; Tue, 27 Feb 2001 15:04:50 -0500 Message-Id: <01Feb27.150450est.115283@gateway.intersys.com> From: "E. Jordan Bojar" To: Subject: Re: block realaudio MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Date: Tue, 27 Feb 2001 15:04:50 -0500 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Joe-- If you're going to be restricting your userbase to begin with (and that's your choice, obviously), you may want to consider blocking everything, then allowing only explicit services. I've seen networks where blocking Napster alone would've returned 30% of their bandwidth. Then you can open services back up as required/requested. -- E. Jordan Bojar ----- Original Message ----- From: "Mikel King" To: "Joe Konecny" Cc: "Ben" ; "FreeBSD List" Sent: Tuesday, February 27, 2001 2:58 PM Subject: Re: block realaudio > These are the default ports that server sends on. I have a couple of > realservers running on fBSD and these are the standard ports used for these > types of broadcasts. > > rtsp and pna will try to connect via tcp and udp...in addition there are some > custom config ports for udp connectrions on 7070, 8200, 3030-3036 as well. > > I hope that helps clarify things a bit... > > Cheers, > mikel > > Joe Konecny wrote: > > > I don't see either of these listed. Real Audio is configured > > to "auto-configure". I suppose that means it will find a port > > to use automatically? If so that presents a problem. > > > > Mikel King wrote: > > > > > > Typically... > > > > > > rtsp:554 > > > pna:7070 > > > > > > Cheers, > > > mikel > > > > > > Ben wrote: > > > > > > > -----BEGIN PGP SIGNED MESSAGE----- > > > > Hash: SHA1 > > > > > > > > Yes, find the port number for RealAudio and put a rule to deny log > > > > that port going outbound. > > > > > > > > - ----- Original Message ----- > > > > From: "Joe Konecny" > > > > To: "FreeBSD List" > > > > Sent: Tuesday, February 27, 2001 11:57 AM > > > > Subject: block realaudio > > > > > > > > > Is there any way I can block users access to using realaudio? > > > > > > > > > > Our users constantly tie up bandwidth with that stuff. > > > > > > > > > > I'm using ipfw and natd currently with ipfw set to open. > > > > > > > > > > Any help is appreciated! > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > > > -----BEGIN PGP SIGNATURE----- > > > > Version: PGPfreeware 7.0.3 for non-commercial use > > > > > > > > iQA/AwUBOpveYQht7rD8NlhDEQLoBACg1hkYeDYe350nKAkXt/s/vHmlQJcAoNcR > > > > KDGSCR/U4k/KbaZns/F/73f/ > > > > =dgrL > > > > -----END PGP SIGNATURE----- > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > > with "unsubscribe freebsd-questions" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message