Screen OS

last person joined: 8 months ago 

This is a legacy community with limited Juniper monitoring.

  • 1.  Gmail Chat

    Posted 12-07-2009 07:26

    What do I need to change my SSG140 to block gmail chat?

     

    Thank you very much.



  • 2.  RE: Gmail Chat
    Best Answer

    Posted 12-09-2009 14:45

    Hi,

     

     

    If the Gmail chat uses random ports then firewall cannot blocked it you need IDP in order to block.

    Other option you can is that blocking DNS lookups to chatenabled.mail.google.com by returning 127.0.0.1.

     

    Thanks

    Atif



  • 3.  RE: Gmail Chat

    Posted 12-10-2009 07:19

    Perfect. Then to make the change who kindly told me.

     

    I deeply appreciate your support.



  • 4.  RE: Gmail Chat

    Posted 12-13-2009 21:52

    Atif,

     

    Can you please elaborate more on blocking DNS lookup and returning 127.0.0.1, is there any documents regarding this. I have many different issue's that are familiar to it. Would appreciate your support

     

    Regards

    Jawwad



  • 5.  RE: Gmail Chat

    Posted 12-15-2009 04:32

    I believe you would set up your own DNS to serve google.com.  You would have * have an NS pointing to Google's name servers.  Then, you would have an A record for chat with an address of 127.0.0.1.

     

    Alternatively, you could send out a hosts file update within the company.  UNIX boxen will be /etc/hosts.  Windows hosts will be %WINDOWS%/system32/driver/etc/HOSTS

     

    Best of luck,

     

    Sean Ellis