Educause Security Discussion mailing list archives

Re: FW: Skype allowance

From: Tomo <tomo () LONDON EDU>
Date: Fri, 8 Jun 2007 14:46:53 +0100

I'm suspecting that we're going to have to open up a port inbound, but
in the meantime I'm looking at whether running one node on campus as a
bastion supernode is a feasible option (linux, nicely locked down) that
fixes things.

_________________________________
 
Tomo | Senior Network & Telecommunications Infrastructure Engineer
Direct line: +44 (0)20 7000 7777 | Email: tomo () london edu
 
www.london.edu
 

-----Original Message-----
From: Cal Frye [mailto:cjf () CALFRYE COM] 
Sent: 08 June 2007 14:06
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] FW: Skype allowance

Tomo wrote:

We explicitly permit Skype as a useful communication and business
tool for our students; however with a default deny firewall we are in
recent months  seeing some issues with call quality as most of our
Skype-Skype traffic will depend upon other Skype clients to relay
traffic - we suspect that there are a decreasing number of Skype
clients on the internet with spare CPU cycles or bandwidth to relay
those calls, but our investigations are still ongoing.

We opened a specific inbound port for Skype, and instruct all our users
to configure their Skype clients to listen on this port. Pick a random
one in the high range, like 61234, for example. This gets advertised as
part of the contact status conversation with one's friends in the
network.

-- 
Regards,
-- Cal Frye, Network Administrator, Oberlin College

   www.calfrye.com,  www.pitalabs.com

"Wealth consists not in having great possessions, but in having few
wants." -- Epicurus.

______________________________________________________________________

This email has been scanned by the MessageLabs Email Security System
on behalf of the London Business School community.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________

______________________________________________________________________

This email has been scanned by the MessageLabs Email Security System
on behalf of the London Business School community.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________

Current thread:

Re: FW: Skype allowance, (continued)
- Re: FW: Skype allowance Visser, Ernest (Jun 07)
- Re: FW: Skype allowance Cal Frye (Jun 07)
- Re: FW: Skype allowance Joel Rosenblatt (Jun 07)
- Re: FW: Skype allowance Samuel Young (Jun 07)
- Re: FW: Skype allowance David Gillett (Jun 07)
- Re: FW: Skype allowance Martin Radford (Jun 07)
- Re: FW: Skype allowance Michael Renne (Jun 07)
- Re: FW: Skype allowance Cal Frye (Jun 07)
- Re: FW: Skype allowance Tomo (Jun 07)
- Re: FW: Skype allowance Cal Frye (Jun 08)
- Re: FW: Skype allowance Tomo (Jun 08)
- Re: FW: Skype allowance Cal Frye (Jun 08)
- Re: FW: Skype allowance Bruce Curtis (Jun 08)