Category Archives: Block Messenger

TradeManager Black & white list is now supported in WFilter 4.1

The following example will show you how to use TradeManger black list.

1. New a blocking level named “trademanager”

2. Configure the black list

Notice: you should add “aliint” before your account, and save the configuration.


3. Apply the blocking level

4. Check blocking of TradeManager

5. Check real-time block

As you can see in the above example, TradeManager accounts in the black list will not be able to login.

How to monitor and filter internet activities of PPPOE users?

PPPOE is widely used for user authentication and traffic accounting. However, it’s a little difficult to monitor and filter PPPOE clients’ internet usage and behavior.

In this example, we will demonstrate you to monitor and filter PPPOE clients with WFilter Free. Please notice that only non-encrypted and uncompressed PPPOE traffic can be supported. So the first step is to configure your PPPOE server for non-encryption and non-compression.

1. PPPOE server settings

Let’s take windows 2003 and RouteOS for examples.

1). 2003 Server Configuration

If you are using windows 2003 server as the PPPOE server, please follow below steps to configure:

In “Properties” of the “Routing and Remote Access”, disable “software compression” and “LCP” in the “PPP” tab.

Edit “remote access policy” for “no encryption” in “Edit Profile”. Notice: The default two policies shall all be modified.



2). ROS Configuration

If you are using routeOS as PPPOE server, please follow these steps to disable compression and encryption:

In “PPP” tab of “Profiles”, click “Protocols” and disable compression and encryption.

2. Monitor PPPOE clients in WFilter

2.1) Choose the internal adapter

Now WFilter is able to parse PPPOE traffic. In this example, we just install WFilter free in the windows 2003 PPPOE server.

You need to choose the internal adapter as the “monitoring adapter” in “System Settings”->”Monitoring Settings” of WFilter.


2.2). Setup client policy

Add a block policy to block web surfing.


Apply this policy to PPPOE clients’ ip ranges


2.3). Check Blocking

PPPOE clients get blocked.

Blocking events in WFilter.

How to block udp ports 1024-65534 in dd-wrt router?

This blog will guide you to block internet udp ports 1024-65534 in your dd-wrt router. This is required for WFilter p2p blocking in pass-by filtering mode.

Click “Add/Edit Service” in “Access Restrictions”



Add a port service with udp ports range 1024-65534

Enable blocking of this new service.

In “Blocked Services”, enable blocking of this new defined service.

Done. Now certain udp ports are blocked.

How to block udp ports 1024-65534 in openwrt router?

This blog will guide you to block internet udp ports 1024-65534 in your openwrt router. This is required for WFilter p2p blocking in pass-by filtering mode.

Click “Add Entry” in “Network”->Firewall”->”Traffic Control”

Define the blocking rule

The destination port shall be “1024-65534″.

Done, now you can check the blocking policy in iptables list.

How to block Mail.Ru Agent in network?

1. What is the Mail.Ru Agent?


Mail.Ru is the leading Internet portal in Russia in communication and entertainment. Its key product is the biggest communication portal for Russian speaking audience that includes the largest free webmail service, instant messenger Mail.Ru Agent, national social network Moi Mir@Mail.Ru and search engine Poisk@Mail.Ru, Mail.Ru headquarters is in Moscow.


Also Mail.Ru is the leader in online game publishing with over 50 percent market share in Russia. The company is a publisher of more than 100 game titles in Russia, Europe, Asia, including such popular original titles as Troetsarstvie, Legend: Legacy of the Dragons, Allods Online as well as successful international licenses such as Perfect World II, Lord of the Rings Online. Also Mail.Ru owns 50 percent in NIKITA.ONLINE.


This turtorial will guide you to block Mail.Ru Agent in your network.


2. How to block Mail.Ru Agent and Web-Mail.Ru?


2.1. First, add a new Custom Protocol


Because “Mail.Ru Agent” is not in Wfilter default pattern database, you need to add a custom protocol.



            The first pattern:


            Name: Mail.Ru_TCP
            Desc: Mail.Ru_TCP
            Type: TCP SEND
            Offset: 0
            Format: 0
            Content: ^\xef\xbe\xad\xde


            The second pattern:


            Name: Mail.Ru_HTTP
            Desc: Mail.Ru_HTTP
            Type: HTTP SEND
            Offset: 0
            Format: Host
            Content: ^(mra|webagent)\.mail\.ru


              The third pattern:

            Name: Mail.Ru_TCP_2
            Desc: Mail.Ru_TCP_2
            Type: TCP RECV
            Offset: 0
            Format: 0
            Content: ^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}:2041\x0a$


 


2.2. Enable blocking of “Mail.ru Agent” in certain blocking policy.




Apply this blocking policy to certain computers.


 


3. Now Mail.Ru Agent will be completely blocked.




4. Web-Mail.Ru is also blocked.



More information, please check “WFilter Enterprise”.


Other related links:


How to block internet downloading?
How to monitor internet usage on company network?
Internet monitoring software for business
How to filter web surfing?
How to block websites and restrict internet access?
How to block HTTPS websites on my network?


 

How to block Skype?

1. What is Skype?


Skype is software that enables you to make free video and conference calls, send instant message and share files with other Skype users. Skype uses both TCP and UDP to communicate with dynamic ports, which makes it difficult to block it. For more details about skype protocol, please check: Skype protocol.


2. How block Skype with Wfilter ?


WFilter makes it simple to block skype traffic in your network from a central server. However, because WFilter is a pass-by filtering product, it can only detect and block skype TCP traffic. So you also need to block UDP ports 1024-65534 in your router of firewall. For more information about “pass-by filtering”, please check: What is the difference between passby filtering and passthrough filtering?


(1) Add a blocking level and enable “Block Skype”



(2)Apply blocking level to computers you want to block.



(3)Now skype will not able to connect anymore


 



 



More information, please check “WFilter Enterprise”.


Other related links:

How to block internet downloading?
How to monitor internet usage on company network?
Internet monitoring software for business
How to filter web surfing?
How to block websites and restrict internet access?
How to block HTTPS websites on my network?

How to block google talk in gmail with WFilter?

Though official Google Talk protocol is XMPP, it is more
complicated and flexible than XMPP. Google Talk (GTalk) provides several ways for you to access your gtalk account, including:

  • 1). Official  “Google Talk” client.
  • 2). Gmail chat in google mail account.
  • 3). Google Talk Gadget — a web version of Gtalk.

This makes it complicated for you to block usage of google talk on company network. This tutorial will guide you to block google talk, gmail chat and google talk gadget using WFilter.

WFilter identifies Google talk connections by signature matching. Blocking google talk is simple in WFilter.

The below examples demonstrates blocking of google talk and gmail chat.

1. Blocking of jabber, gmail chat and gadget

Set a blocking policy in WFilter to block jabber and google talk:

2. Blocked Google talk:


3. Blocked gadget


4. Blocked gmail chat

How to block MSN online game with WFilter?

Do you notice that your staffs are playing MSN online games during working time? Do you know how to stop them playing games? Here we are talking about how to block MSN games.


 


This tutorial will guide you to block MSN online game with WFilter.


 


1. Open WFilter, choose ‘System Settings—>Customize Protocols’,set ‘Protocol Name,Protocol Desc, Protocol Type, Show it in Blocking Rule’ as the picture, then click ‘New Pattern’.



2. Input the following words into the textbox. Then click ‘Save Settings’.


Name:       MSN Game


Desc:        MSN Game


Type:        HTTP SEND


Begin Byte:  (Leave it as blank.)


Offset:      0
Format:     X-IM-URL
Content:    ^GET\s\/GameBrowser\/GameBrows



3. In ‘Control Settings’–>’Blocking Levels’–>’Level Name: Block MSN Game’–>in tab ‘Games and stock’, check ‘Block MSN Game’.



4. In ‘User-computer Table’, change the Blocking Rules of a certain IP –> ‘Save Settings’–>’Apply Changes’.



5.Now let’s check whether WFilter works!


How to block google talk and gmail chat on company network?

Google Talk (GTalk) is a free Windows and web-based application for instant messaging and voice over internet protocol (VOIP), offered by Google Inc. You may use “Google Talk” to send instant messages, transfer files, make PC-to-PC calls and audio conferencing.

However, sometimes you may want to block usage of google talk on company network. This tutorial will guide you to block google talk using WFilter.

Though instant messaging between the Google Talk servers and its clients uses an open protocol XMPP, it is more complicated and flexible than XMPP.
Google talk uses several ports to connect to its server:

1). Using Jabber standard tcp port 5222.
2). Using TLS port 443.
3). Using web chatting on port 80 in gmail.

So you can not block Google talk by simply blocking Jabber standard port. WFilter makes it simple to block google talk. Google talk connections can be identified and blocked by signature matching.

The below examples demonstrates blocking of google talk.

1. Blocking of Google talk and gmail chat

Set a blocking policy in WFilter to block jabber and google talk:

Blocked Google talk:

2. Block file transfer of Google talk

You also can block file transfer of Google Talk in WFilter. This will block file transfer of google talk without blocking of normal google talk text messaging.

More information, please check “WFilter Enterprise”.
Other related links:
How to block internet downloading?
How to monitor internet usage on company network?
Internet monitoring software for business
How to filter web surfing?
How to block websites and restrict internet access?
How to Block Bittorrent and bitcomet?
How to block msn file transfer?
How to block certain websites to save your productivity?
How to block AIM using WFilter?

How to block instant messaging on company network?

Instant Messaging can be a benefit to business when used properly,
but IM is often abused by employees and poses significant liability and
security risks.

The free consumer IM client
programs in widest use, such as AIM, ICQ, Yahoo and MSN Messenger, pose many
security concerns. More than text-based chat, IM programs also include peer to peer file
transfer capabilities, which can pose security risks in two ways.
Internal users can send documents that may be confidential out of your
network, circumventing your network’s perimeter defenses against file
sharing programs or e-mail attachments. On the other hand, external
users can send files that might contain viruses or malicious code to
users on the internal network. In addition, a liability risk arises if
employees use the file transfer feature to share copyrighted music,
movie or software files in violation of the law.

To make your business efficient, it is necessary for you to monitor, filter and block instant messaging in your network.

You may want to apply an internet messenger usage policy like this:

1. Only authrozied users can use certain IM tools.

2. File transfer via messengers shall be blocked.

3. Only work-related IM accounts can be used.

As most firewall programs do not support that kind of feature, you need an internet monitoring and filtering program like “WFilter Enterprise”. “WFilter Enteprise” enables you to monitor, manage and block internet access of all computers on a mirroring port. For internet messaging blocking, WFilter supports:

1. Blocking certain messenger protocols.

2. Blocking file transfer via messengers.

3. Blocking certain messenger account using black/white list.

Figures:


Block file transfer in messengers:


MSN black/white list:

More information, please check “WFilter Enterprise”.
Other related links:
How to block websites at work during working hours?
How to block video streaming on company network?
How to block internet downloading?
How to monitor internet bandwidth?
How to monitor internet usage on company network?
Internet monitoring software for business
How to filter web surfing?