Firewall Wizards mailing list archives

Re: Blocking Google Talk

From: Kevin <kkadow () gmail com>
Date: Thu, 15 Jun 2006 14:11:56 -0500

On 6/15/06, Mike Powell <mikep () dri-eaz com> wrote:

We filter our internet-bound traffic through Microsoft's ISA 2004, and
it is protocol-aware for http (port 80 and 443) traffic, so I can't
think of a way to block the port 443 traffic as it appears to go through
the ISA server as a valid SSL connection, just like someone browsing an
SSL website.


There are products (e.g. Bluecoat) offering MITM interception and
analysis of SSL traffic.

While I don't think Bluecoat has handlers for Google Talk (or the
generic XMPP protocol it's built on) today, given that their products
are targeted at "IM migitation", I'd expect one soon.


Kevin Kadow

(P.S. We just finished an evaluation of Bluecoat, were generally
pleased with the proxy and streaming media features.  One area where
the product fell short was "Enterprise" (hierarchical) management and
reporting, features said to be coming in the next few months.)
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Blocking Google Talk Mike Powell (Jun 15)
- Re: Blocking Google Talk Julian M D (Jun 15)
- Re: Blocking Google Talk Kevin (Jun 15)
- Re: Blocking Google Talk Paul D. Robertson (Jun 19)
  - Re: Blocking Google Talk Phil Trainor (Jun 19)
    - Re: Blocking Google Talk ArkanoiD (Jun 20)
    - Re: Blocking Google Talk Phil Trainor (Jun 20)
  - Re: Blocking Google Talk Frank Knobbe (Jun 19)
- <Possible follow-ups>
- Re: Blocking Google Talk Paul D. Robertson (Jun 19)
  - Re: Blocking Google Talk Frank Knobbe (Jun 19)
    - Re: Blocking Google Talk R. DuFresne (Jun 20)
    - Re: Blocking Google Talk Devdas Bhagat (Jun 20)
    - Re: Blocking Google Talk Frank Knobbe (Jun 20)

(Thread continues...)