killugh Posted July 4, 2004 Posted July 4, 2004 Hello:I am an intermediate IT support person for a high school computer lab. I'm having some trouble preventing students from accessing webmail. I thought the easiest thing to do would (rather than trying to ban 20,000 websites supplying email) would be to remove the ports that support webmail.I've done some research into POP, etc. and discovered that ports 109, 110, etc. support web based mail activity. Could someone explain to me how these ports might be closed?PS. I went into Network Connections, double clicked TCP/IP protocol, advanced properties. I found some filtering options in there and messed around but to no avail...
Ge0ph Posted July 5, 2004 Posted July 5, 2004 I think web mail runs through port 80, the same as any other web site. If you block webmail by port you will also block web browsing. I very well could be wrong about this because I'm not sure how webmail works. But I believe it just sends a request to the server via the browser(port 80), the server assembles the page with the information and sends it back, no other ports are needed. At any rate, port blocking should be done at the gateway for a fair sized network.
killugh Posted July 5, 2004 Author Posted July 5, 2004 You're right about port 80. I used a proc called Cdcombobulator which blocked port 80. I couldn't use the HTTP protocol. I was wondering though if I could just block outgoing stuff, I.e. Outlook Express (POP3) stuff...without preventing regular Internet activity...
Ge0ph Posted July 5, 2004 Posted July 5, 2004 Outlook express is not webmail.However, if you block port 25 (SMTP) and 110 (POP3) you should be good to go.How you do that on an individual machine I don't know, I do all of my blocking at my Linux firewall.
gamehead200 Posted July 5, 2004 Posted July 5, 2004 Why not just disable downloading? My school allows retrieving e-mail...
killugh Posted July 5, 2004 Author Posted July 5, 2004 If I purchase a firewall and set it up between the lab's main switch and the direct Internet connection, I should be able to prevent the emails?
Ge0ph Posted July 5, 2004 Posted July 5, 2004 If I purchase a firewall and set it up between the lab's main switch and the direct Internet connection, I should be able to prevent the emails?And get a better understanding of how it work and much more. You can acomplish what you wantYou get to learn something newSounds like a win, win situation to me. PS. for the best bang for the buck I would suggest finding an old computer and installing something like Clarkconnect, M0n0wall, IPCop or smothwall.
MCT Posted July 5, 2004 Posted July 5, 2004 also, if you've never used a firewall, i would "play" with it first, cuz if u set it up & its done wrong, u wont be able 2 let any computer connect 2 u or u wont be able 2 connect 2 the netregards
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now