They are specifiable on the server side. And most server operators run on default ports as it is easier to connect. But you are right. An organization policy of no games is better. You could maybe also see if a tool like esniff (not free) or tcpdump (free) would work to track people down. - James -----Original Message----- From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On Behalf Of Todd Suiter Sent: Sunday, January 06, 2002 8:21 PM To: James Cc: 'Walter Gray'; nanog@merit.edu Subject: RE: Blocking Internet Gaming Problem with that is you can spec those ports pretty much at will. This came up on the focus-ids@securityfocus list last week. Policy is a good place to start. Make it obvious that your org does not approve of this type of thing. Then start looking at tcpdump output to find the ports/people, and go from there. toddler On Sun, 6 Jan 2002, James wrote:
What kind of games specifically?
Like online Java games (Bejeweled)? Or games like Quake, Unreal,
Tribes
etc?
The latter is much easier, just block all traffic to/from the default ports which use them. A quick google would yield what they use. I'll give you a quick hint and say Quake3 is 29760-5 or so and Tribes1/2 is 28000-28005 or so.
- James
-----Original Message----- From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On Behalf Of Walter Gray Sent: Sunday, January 06, 2002 8:03 PM To: nanog@merit.edu Subject: Blocking Internet Gaming
Does anybody know of any good software or way to restrict Internet gaming on a corporate Network?