[44975] in North American Network Operators' Group
RE: Blocking Internet Gaming
daemon@ATHENA.MIT.EDU (James)
Sun Jan 6 20:29:22 2002
From: "James" <james@james-web.net>
To: "'Todd Suiter'" <todd@s4r.com>
Cc: "'Walter Gray'" <wgray@wwns.net>, <nanog@merit.edu>
Date: Sun, 6 Jan 2002 20:27:14 -0500
Message-ID: <000901c1971a$70470150$6600a8c0@jamesdesktop>
MIME-Version: 1.0
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
In-Reply-To: <Pine.GSO.4.33.0201061718550.24525-100000@sashimi.space4rent.com>
Errors-To: owner-nanog-outgoing@merit.edu
They are specifiable on the server side. And most server operators run
on default ports as it is easier to connect. But you are right. An
organization policy of no games is better.
You could maybe also see if a tool like esniff (not free) or tcpdump
(free) would work to track people down.
- James
-----Original Message-----
From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On Behalf Of
Todd Suiter
Sent: Sunday, January 06, 2002 8:21 PM
To: James
Cc: 'Walter Gray'; nanog@merit.edu
Subject: RE: Blocking Internet Gaming
Problem with that is you can spec those ports pretty much at will. This
came up
on the focus-ids@securityfocus list last week. Policy is a good place to
start. Make it obvious that your org does not approve of this type of
thing.
Then start looking at tcpdump output to find the ports/people, and go
from
there.
toddler
On Sun, 6 Jan 2002, James wrote:
>
> What kind of games specifically?
>
> Like online Java games (Bejeweled)? Or games like Quake, Unreal,
Tribes
> etc?
>
> The latter is much easier, just block all traffic to/from the default
> ports which use them. A quick google would yield what they use. I'll
> give you a quick hint and say Quake3 is 29760-5 or so and Tribes1/2 is
> 28000-28005 or so.
>
> - James
>
> -----Original Message-----
> From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On Behalf
Of
> Walter Gray
> Sent: Sunday, January 06, 2002 8:03 PM
> To: nanog@merit.edu
> Subject: Blocking Internet Gaming
>
>
>
> Does anybody know of any good software or way to restrict Internet
> gaming on
> a corporate Network?
>
>
