1boredguy Posted May 12, 2006 Share Posted May 12, 2006 (edited) Hello,I need help. I want to disable gmail chat in a network, under a DNS server. I found these directions on the gmail help center, but I'm clueless of DNS server editing. How/where do I block DNS lookups?"I am a network administrator, and need to disable Gmail's chat features on my network.We understand that it's sometimes necessary to disable instant messaging services on a network. If you need to prevent Gmail users on your network from chatting, we suggest blocking DNS lookups to chatenabled.mail.google.com, by returning 127.0.0.1."Any replies are appreciated! Edited May 12, 2006 by 1boredguy Link to comment Share on other sites More sharing options...
Gouki Posted May 12, 2006 Share Posted May 12, 2006 I think you need a 'static' entry on the Forward Lookup Zone so that the domain name ( chatenabled.mail.google.com ) gets resolved to 127.0.0.1. Link to comment Share on other sites More sharing options...
1boredguy Posted May 12, 2006 Author Share Posted May 12, 2006 I think you need a 'static' entry on the Forward Lookup Zone so that the domain name ( chatenabled.mail.google.com ) gets resolved to 127.0.0.1.I created a new Zone. Does it matter if it's primary or active directory-integrated?I just left the zone blank. It seems to work just like that, the chat feature doesn't load. Link to comment Share on other sites More sharing options...
Gouki Posted May 12, 2006 Share Posted May 12, 2006 Well, if it worked, great. I suggest Active Directory Integrated Zone. If you have the DNS server also as a DC, do it. Link to comment Share on other sites More sharing options...
1boredguy Posted May 12, 2006 Author Share Posted May 12, 2006 Well, if it worked, great. I suggest Active Directory Integrated Zone. If you have the DNS server also as a DC, do it.Thanks, very cool! If I want to return 127.0.0.1, then where do I do that?If I get the "properties" of the zone, I see the tabs: General, State of Authority, Name Servers, WINS, Zone Transfers. Link to comment Share on other sites More sharing options...
Gouki Posted May 12, 2006 Share Posted May 12, 2006 Create a new A record. Link to comment Share on other sites More sharing options...
RJARRRPCGP Posted May 13, 2006 Share Posted May 13, 2006 Hello,I need help. I want to disable gmail chat in a network, under a DNS server. I found these directions on the gmail help center, but I'm clueless of DNS server editing. How/where do I block DNS lookups?"I am a network administrator, and need to disable Gmail's chat features on my network.We understand that it's sometimes necessary to disable instant messaging services on a network. If you need to prevent Gmail users on your network from chatting, we suggest blocking DNS lookups to chatenabled.mail.google.com, by returning 127.0.0.1."Any replies are appreciated!I dunno about that, because if people know the IP address, then they can get around that!! Link to comment Share on other sites More sharing options...
Gouki Posted May 14, 2006 Share Posted May 14, 2006 He can still add a new record to the Reverse Lookup Zone. That should get that problem fixed. Link to comment Share on other sites More sharing options...
cluberti Posted May 14, 2006 Share Posted May 14, 2006 Ultimately, the only "sure-fire" way to block traffic anywhere is to use a proxy and funnel all traffic through it. DNS bloking will work for DNS names, but someone connecting to the IP address will bypass. However, if you don't have a proxy in place, the DNS blocking should work for most users, at least for a good while.I'd still ultimately suggest a proxy to do things like this, but the DNS workaround will work. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now