Ask the Expert

Blocking AOL software

I have a firewall and have blocked access to the site aol.com. However, I have noticed that AOL users can install AOL software and connect directly to it via the tcpip connection of this software, which evidently bypasses my firewall. Is there a way to block AOL software?

    Requires Free Membership to View

First off, always trip and block with an IP address, as well as DNS.

Second, look up ALL IP addresses ranges at: http://ws.arin.net/cgi-bin/whois.pl

Third, AOL returns a huge list, so I will only include a particle list:
Move above .... of Maine FON-106796236849100 (NET-63-167-208-0-1) 63.167.208.0 - 63.167.223.255
AOL Time Warner Cable of Maine FON-106796057649100 (NET-63-167-201-0-1) 63.167.201.0 - 63.167.201.255
AOL Time Warner Cable of Maine FON-34900336644100 (NET-208-5-176-0-1) 208.5.176.0 - 208.5.191.255
AOL Transit Data Network ATDN-ISP (NET-64-236-0-0-1) 64.236.0.0 - 64.236.255.255
AOL Transit Data Network ATDN (NET-66-185-128-0-1) 66.185.128.0 - 66.185.159.255
AOL IMP-ARG-AOL-DU24 (NET-64-76-9-0-1) 64.76.9.0 - 64.76.9.255
AOL IMP-ARG-AOL-DU33 (NET-64-76-34-0-1) 64.76.34.0 - 64.76.34.255
AOL IMP-ARG-AOL-DU34 (NET-64-76-35-0-1) 64.76.35.0 - 64.76.35.255
More below.

I will let you look up and compile your own results.

Fourth, looks like the address ranges are setup for you above that you need to block. There are many, so I'll assume they own a whole bunch of addresses. You will need to take a close look and consolidate as necessary.

Fifth, large Internet companies such as AOL will always have this many addresses, but others will not. I always recommend you use the method above only because it will SHOW all address, thus you will not round the corner one day and still see employees on AOL.

Good luck... this is always fun. Oh yeah, also never trust the word from someone on the number of IP addresses and ranges. You never know just how old that information may be.

There are other resources and tools on the Internet that do the same lookup. I prefer this method.


For more information on this topic, visit these other SearchSecurity.com resources:
  • Ask the Expert: Ports to block to prevent IM on network
  • Ask the Expert: Various ways to open and close ports without a firewall
  • Ask the Expert: Closing a port


    This was first published in February 2003

  • There are Comments. Add yours.

     
    TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

    REGISTER or login:

    Forgot Password?
    By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
    Sort by: OldestNewest

    Forgot Password?

    No problem! Submit your e-mail address below. We'll send you an email containing your password.

    Your password has been sent to: