Add new entry as follow if you want to block multi msn.
Application = msnmsgr Key = KillOldSession Value = 1
By applying this if a user already signin on msn messenger then he try to make new session (open and try to signin multi msn) firewall client kills his previous session (signout) and signin on new session. This way only one session is allowed on MSN Msessenger simultaneously.
You can also block any other application like Yahoo Messenger,IRC,ICQ and also IE (MS Internet Explorer or any other browser). Like if you want to block Yahoo messenger then add following setting.
Application = YPager Key = KillOldSession Value = 1
This trick only applicable if user connecting thier messengers through Firewall Client (mostly), if he set any proxy setting in connection tab of application then (rarely) it will bypass firewall client hence no impact of setting that you made.
But limited to FWC Users only . We are also using it from long time to controll multi messenger But users are now getting smart. They tell each other settings on LOCAL LAN If user set proxy or connects via socks, this setting will not apply. still then good for normal basic cusers.
My question is... why would you want to block MultiMSN in the first place.. it doesn't use insane amounts of bandwidth like some other apps and its usage keeps the clients happy.
You are right. MSN dont use considerbale amount of bandith & people are happpy to use it, but is good for operators who have very limited amount of bandiwth like dialup in rural areas or you have such a policy where multi msn is to allowed. It is also a feature of iSA SERVER which was described that IT IS POSSBILE IN ISA.
Hello all, Well it is possible to allow an application to communicate freely to some users and block it to all others. I'm doing it at my network as KAZAA is opened for VIP users and blocked for others ! with FWC mind it. So, the bottom line is IT IS POSSIBLE !
------------------------------ Hunaid Haroon Al Qureshi NetCommunications munnobhai@hotmail.com
I Want to block olnly file transfer through msn messanger and want to allow the msn chatting to the clients of my network can any body help me in this regards, Thanks in advanced.
Posts: 262
Joined: 22.Dec.2003
From: The Netherlands
Status: offline
All ideas in this post are nice and interesting. But isn't it true that a lot of questions on this message board are on how to ALLOW MSN through ISA. So why worry about file transfer and things like that, if it needs special configuration to make it work ?
It's easy as sin:
SNAT Clients: Open port 1863 outbound for the users/ip's you want. Leaves only the chat.
Firewall Clients: Same as above, DON'T add secondary connections, cause this will make things like file transfer work
If chat is all you want to allow, let the users use the ISA web proxy in the MSN configuration.
BEWARE:
Socks/Web proxy WILL allow chat to all if no authentication is required.
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [ISA Server 2000 Misc.] >> Tips & Tricks >> Tips for blocking Multi MSN 
Tips for blocking Multi MSN - 
RE: Tips for blocking Multi MSN - 
RE: Tips for blocking Multi MSN - ![[Wink]](/image/smiles/wink.gif)
![[Frown]](/image/smiles/frown.gif)
. We are also using it from long time to controll multi messenger But users are now getting smart. They tell each other settings on LOCAL LAN ![[Mad]](/image/smiles/mad.gif)
![[Big Grin]](/image/smiles/biggrin.gif)
for normal basic cusers. 
RE: Tips for blocking Multi MSN - 
RE: Tips for blocking Multi MSN - ![[Smile]](/image/smiles/smile.gif)
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread