+ Post New Thread
Results 1 to 10 of 10
Wireless Networks Thread, Blocking ports on Meru Wireless - HOW? in Technical; Hello All, I am trying to block the use of iMessage and Facetime on iPads on our wireless network. I ...
  1. #1

    maniac's Avatar
    Join Date
    Feb 2007
    Location
    Kent
    Posts
    3,067
    Thank Post
    209
    Thanked 430 Times in 310 Posts
    Rep Power
    144

    Blocking ports on Meru Wireless - HOW?

    Hello All,

    I am trying to block the use of iMessage and Facetime on iPads on our wireless network. I know the ports I need to block, but can anyone shed light on how I might program this into a meru wireless system, or into the settings for a Vlan on an HP managed switch? I am not the most experienced person when dealing with these types of systems, so an 'idiots guide' would be helpful!

    Cheers,

    Mike.

  2. #2


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    It would be better to do it on the firewall by VLAN.

  3. #3

    twin--turbo's Avatar
    Join Date
    Jun 2012
    Location
    Carlisle
    Posts
    2,334
    Thank Post
    1
    Thanked 381 Times in 340 Posts
    Rep Power
    150
    Meru

    Configuration > QOS > System Settings > QOS and Firewall Rules.

    Rob

  4. Thanks to twin--turbo from:

    maniac (24th January 2013)

  5. #4

    twin--turbo's Avatar
    Join Date
    Jun 2012
    Location
    Carlisle
    Posts
    2,334
    Thank Post
    1
    Thanked 381 Times in 340 Posts
    Rep Power
    150
    Quote Originally Posted by CyberNerd View Post
    It would be better to do it on the firewall by VLAN.
    If there system is configured so that the client user/machines are on a vlan that can be controlled by the FW.



    It can be done on Meru Firewall, and on the HP usigng ACL's on the vlan.

    Rob

  6. #5

    maniac's Avatar
    Join Date
    Feb 2007
    Location
    Kent
    Posts
    3,067
    Thank Post
    209
    Thanked 430 Times in 310 Posts
    Rep Power
    144
    Quote Originally Posted by CyberNerd View Post
    It would be better to do it on the firewall by VLAN.
    I've been told by our broadband support that iDevices using iMessage and Facetime between each other internally don't go anywhere outside the network, the communication is directly between the devices, hence the need to block this internally and not on the firewall. Our firewall is not aware of our internal VLANS anyway, but we do have a good setup with seperate VLANS for various aspects of the system all on managed switches.

    Cheers twin--turbo I will have a look at those settings on the Meru controller, that should be a good enough pointer to get me going.

    Regards,

    Mike.

  7. #6

    twin--turbo's Avatar
    Join Date
    Jun 2012
    Location
    Carlisle
    Posts
    2,334
    Thank Post
    1
    Thanked 381 Times in 340 Posts
    Rep Power
    150
    You may need to block all inter-client traffic on the wireless to prevent clients talking to each other. This is not too hard with Meru's firewall.

    Rob

  8. #7

    maniac's Avatar
    Join Date
    Feb 2007
    Location
    Kent
    Posts
    3,067
    Thank Post
    209
    Thanked 430 Times in 310 Posts
    Rep Power
    144
    Quote Originally Posted by twin--turbo View Post
    You may need to block all inter-client traffic on the wireless to prevent clients talking to each other. This is not too hard with Meru's firewall.

    Rob
    Any ideas how? I'm not overly familiar with the Meru configuration, it was setup for us and I've only made minor changes to it since. I could get the company who set it up to come in and do this, but obviously they'll charge us so I thought I'd have a look myself first, afterall how hard could it be. More tricky than I thought as I don't really understand the way the firewall settings work on the Meru box.

  9. #8

    twin--turbo's Avatar
    Join Date
    Jun 2012
    Location
    Carlisle
    Posts
    2,334
    Thank Post
    1
    Thanked 381 Times in 340 Posts
    Rep Power
    150
    Well to block P2P traffic

    have a rule
    Src IP (IP of wifi network )
    mask ( Mask of wifi Network )

    Dest IP (IP of wifi network)
    mask (Mask of wif Network)

    Set it to match on Src and Dest IP

    Action DROP

    You will need a rule befor that with the destination as your default route for that vlan to pass. ( so that traffic can get to the rest of the network )

    And then some further rules to block and other ports you don't want to go through the router.

    Rob

  10. #9

    Join Date
    Jan 2009
    Location
    Cambridge
    Posts
    82
    Thank Post
    3
    Thanked 11 Times in 10 Posts
    Rep Power
    33
    Mike
    Happy to help out directly if you need it, mhowell@merunetworks.com and plambert@merunetworks.com
    It's something a lot of schools are looking to do and its a regular question
    thx

  11. #10

    twin--turbo's Avatar
    Join Date
    Jun 2012
    Location
    Carlisle
    Posts
    2,334
    Thank Post
    1
    Thanked 381 Times in 340 Posts
    Rep Power
    150
    Quote Originally Posted by mhowell View Post
    Mike
    Happy to help out directly if you need it, mhowell@merunetworks.com and plambert@merunetworks.com
    It's something a lot of schools are looking to do and its a regular question
    thx

    And that's how we know how it's done thanks to Mark & Paul.


    Better to stop the traffic sooner rather than later in teh chain if possible

    Rob

SHARE:
+ Post New Thread

Similar Threads

  1. How to block Torrents on ISA 2006
    By midobashir in forum Enterprise Software
    Replies: 1
    Last Post: 14th May 2012, 09:49 AM
  2. Replies: 2
    Last Post: 30th November 2011, 08:18 AM
  3. How to get USB port on a VM
    By nicholab in forum Thin Client and Virtual Machines
    Replies: 1
    Last Post: 10th October 2009, 03:41 PM
  4. Does anyone know how to block chat on google
    By timbo343 in forum Windows
    Replies: 12
    Last Post: 21st March 2006, 11:38 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •