Firewall rules using IP?
Firewall rules using IP?
I have a firewall that can only use IP addresses and I desperately need to block hotmail from our network. Any idea how this can be done?
ping www.hotmail.com
Pinging www.hotmail.aate.nsatc.net [212.162.1.125] with 32 bytes of data:
Reply from 212.162.1.125: bytes=32 time=199ms TTL=47
Reply from 212.162.1.125: bytes=32 time=214ms TTL=47
Reply from 212.162.1.125: bytes=32 time=199ms TTL=47
Reply from 212.162.1.125: bytes=32 time=204ms TTL=47
Ping statistics for 212.162.1.125:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 199ms, Maximum = 214ms, Average = 204ms
<Block_IP=212.162.1.125>
Pinging www.hotmail.aate.nsatc.net [212.162.1.125] with 32 bytes of data:
Reply from 212.162.1.125: bytes=32 time=199ms TTL=47
Reply from 212.162.1.125: bytes=32 time=214ms TTL=47
Reply from 212.162.1.125: bytes=32 time=199ms TTL=47
Reply from 212.162.1.125: bytes=32 time=204ms TTL=47
Ping statistics for 212.162.1.125:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 199ms, Maximum = 214ms, Average = 204ms
<Block_IP=212.162.1.125>
for a start block IP 64.4.33.7 and 65.54.179.248
They probably have plenty servers.
Best would be to have a proxyserver that blocks websites and then
block ports 25/110 on the firewall for all computers in the internal network and only allow your mail server through.
Anyway i dont know how you network is set up ,but in my enviroment that is what i wouldive done.
They probably have plenty servers.
Best would be to have a proxyserver that blocks websites and then
block ports 25/110 on the firewall for all computers in the internal network and only allow your mail server through.
Anyway i dont know how you network is set up ,but in my enviroment that is what i wouldive done.
Last edited by SBSP on 19 Dec 2006, 10:33, edited 1 time in total.
-
- Registered User
- Posts: 3515
- Joined: 28 Feb 2004, 02:00
- Processor: Xeon E5620
- Motherboard: Asus P6T6 Workstation
- Graphics card: MSI GTX770
- Memory: 24GB Hynix
- Location: ::1
Better way to get an IP.
C:\Documents and Settings\Administrator>nslookup www.hotmail.com
Server: dnscache1.is.co.za
Address: 168.210.2.2
Non-authoritative answer:
Name: www.hotmail.aate.nsatc.net
Addresses: 166.63.208.158, 212.162.1.124, 166.63.208.158
Aliases: www.hotmail.com, www.hotmail.com.nsatc.net
There you have all the addresses.
C:\Documents and Settings\Administrator>nslookup www.hotmail.com
Server: dnscache1.is.co.za
Address: 168.210.2.2
Non-authoritative answer:
Name: www.hotmail.aate.nsatc.net
Addresses: 166.63.208.158, 212.162.1.124, 166.63.208.158
Aliases: www.hotmail.com, www.hotmail.com.nsatc.net
There you have all the addresses.