Here's my ports info, I actually googled just a few days ago so I
haven't had feedback from students yet.  I also allowed some dns domains
for the xbox role which is on the bottom.  Any advise is welcome.

CCSU_Xbox  Add Policy  
Action  Protocol  Untrusted  Trusted  Enable  Edit  Del  Move  
      Allow  TCP  *:*  *:88            
      Allow  UDP  *:*  *:53            
      Allow  TCP  *:*  *:3074            
      Allow  UDP  *:*  *:3074            
Allow  UDP  *:*  149.152.18.41 /255.255.255.255 :53  trusted dns server

Allow  UDP  *:*  149.152.18.42 /255.255.255.255 :53  trusted dns server

Block  ALL     

CCSU_PS2  Add Policy  
Action  Protocol  Untrusted  Trusted  Enable  Edit  Del  Move  
      Allow  UDP  *:*  *:53            
      Block  TCP  *:*  *:1-1024            
      Allow  ALL TRAFFIC  *  *            
Allow  UDP  *:*  149.152.18.41 /255.255.255.255 :53  trusted dns server

Allow  UDP  *:*  149.152.18.42 /255.255.255.255 :53  trusted dns server

Block  ALL     

CCSU_Nintendo  Add Policy  
Action  Protocol  Untrusted  Trusted  Enable  Edit  Del  Move  
      Allow  TCP  *:*  *:80            
      Allow  TCP  *:*  *:443            
      Allow  TCP  *:*  *:28910            
      Allow  TCP  *:*  *:29900            
      Allow  TCP  *:*  *:29901            
      Allow  TCP  *:*  *:29920            
      Allow  UDP  *:*  *:*            
Block  ALL     

CCSU_Tivo  Add Policy  
Action  Protocol  Untrusted  Trusted  Enable  Edit  Del  Move  
      Allow  TCP  *:*  *:80            
      Allow  TCP  *:*  *:8080            
      Allow  TCP  *:*  *:37            
      Allow  UDP  *:*  *:37            
      Allow  UDP  *:*  *:123            
Block  ALL      

************************************************************************
********
DNS rules

CCSU_Xbox     
Allowed Host  Match  Description  Enable  Del  
     .passport.net ends Microsoft Passport Network       
     .passport.com ends Microsoft Passport Network       
     .passportimages.com ends Microsoft Passport Network       
     .microsoft.com ends Microsoft       


Rob Quast
Central Connecticut State University
Information Technology Services
Technical Services
(860) 832-2057
[log in to unmask]



-----Original Message-----
From: Perfigo SecureSmart and CleanMachines Discussion List
[mailto:[log in to unmask]] On Behalf Of Brian Beausoleil
Sent: Thursday, August 31, 2006 12:48 PM
To: [log in to unmask]
Subject: Re: [PERFIGO] Latest Game Console Access Rules

I guess I failed to specify that i was looking for the ports and hosts
for each system.  The Sony Vaio thing has me worries too.  

Thanks for the replies so far.

---------------------------------------------------
Brian Beausoleil
Network Telecom Services
Southern Connecticut State University

----- Original Message -----
From: "Joyce, Todd N" <[log in to unmask]>
Date: Thursday, August 31, 2006 11:30 am
Subject: Re: Latest Game Console Access Rules
To: [log in to unmask]

> Sony Viaos have got me with this though
> 
> 
> 
> For the rules, we just block all inside server and IT subnets and 
> allowthem to get to DNS and outside.    This works great for those 
> Sony games
> that require 1,000 ports opened.  That is how we have found the 
> computers.
> 
> 
> 
> For the computers I am adding them to the filters list because it will

> be less of those than playstations
> 
> 
> 
> todd
> 
> 
> 
> Todd Joyce
> Network Services
> Radford University - The Smart Choice
> [log in to unmask]
> (540) 831-7777
> 
> 
> 
> Keep your boots and ChapStick and ice hotels.
> 
> Give me shorts and sandals and a thirty-blocker.
> 
> 
> 
> Temperance Brennan - Monday Mourning
> 
> 
> 
> From: Perfigo SecureSmart and CleanMachines Discussion List 
> [mailto:[log in to unmask]] On Behalf Of Robert L Wineriter
> Sent: Thursday, August 31, 2006 11:06 AM
> To: [log in to unmask]
> Subject: Re: Latest Game Console Access Rules
> 
> 
> 
> Taken from an earlier post from Todd,
> 
> 
> 
> **********************************************************************
> **
> ***************
> 
> 
> 
> 00:0D:3A:*        GLOBAL      Microsoft-XBox    ROLE: Game-0607  1
> 
> 
> 00:12:5A:*       GLOBAL      Microsoft-XBox    ROLE: Game-0607   2
> 
> 
> 00:50:F2:*       GLOBAL      Microsoft-XBox    ROLE: Game-0607   3
> 
> 
> 00:01:4A:*       GLOBAL      Sony-PS2-PSP      ROLE: Game-0607   4
> 
> 
> 00:02:C7:*       GLOBAL      Sony-PS2-PSP      ROLE: Game-0607   5
> 
> 
> 00:04:1F:*       GLOBAL      Sony-PS2-PSP      ROLE: Game-0607   6
> 
> 
> 00:13:15:*       GLOBAL      Sony-PS2-PSP      ROLE: Game-0607   7
> 
> 
> 00:09:BF:*       GLOBAL      Nintendo          ROLE: Game-0607   8
> 
> 
> 
> 
> Todd Joyce
> 
> Network Services
> 
> Radford University - The Smart Choice
> 
> 
> 
> ******************************************************
> 
> 
> 
> ________________________________
> 
> From: Perfigo SecureSmart and CleanMachines Discussion List 
> [mailto:[log in to unmask]] On Behalf Of Brian Beausoleil
> Sent: Thursday, August 31, 2006 8:45 AM
> To: [log in to unmask]
> Subject: Latest Game Console Access Rules
> 
> 
> 
> I had a call from some of our gamers on campus about being unable to 
> play.  Well I just checked my rules and they are all gone.  Don't know

> how or why, but they are gone.  Would someone be kind enough to 
> provideme with their latest set of rules?
> 
> 
> 
> It is very much appreciated.
> 
> 
> 
> Brian Beausoleil
> 
> Network Services
> 
> Southern CT State University
> 
> Office: (203) 392-6109
> 
> Email: [log in to unmask]
> 
> 
> 
> 
> 
>