I would like to block some features of skype in my company, as is done in msn, you can release the chat and block file transfer, audio, video, but Skype does not have these options.
Does anyone know how to make this block?
Currently there appears to be only one app sensor signature for Skype and reading the wiki article on the skype protocol there doesn' t seen to be any open information on what parts of the skype API or data steam does what -- it' s pretty much a " block all" or " nothing" affair.
We' ve gone through this dance at our company. Microsoft doesn' t allow anyone access inside the Skype SSL-encrypted packets, and so far nobody has cracked them on their own. We researched Cisco' s newest ASA features, Juniper, and Palo Alto, none offer any Skype granularity. For now, it' s an all-or-nothing affair.
If your company uses Microsoft Lync 2013 servers, you should be able to federate Skype into Lync, and then effect granular control over Lync.
A suggestive workaround if you only want to use Skype for the messenger part is to limit the bandwidth on Skype connections to the point that it becomes unattractive for p2p transfers. I can' t imagine anyone is humanly fast enough to type over ~1000-2600 wps. :)
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.