Re: [Linux-sunucu] yahoo messenger

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view	Attachment view

From: AHMET ATES (a.kare.a@gmail.com)
Date: Mon 19 Sep 2005 - 11:25:45 EEST

Previous message: Murat Aksoy: "Re: [Linux-sunucu] yahoo messenger"
In reply to: Murat Aksoy: "Re: [Linux-sunucu] yahoo messenger"
Next in thread: Huzeyfe Onal: "Re: [Linux-sunucu] yahoo messenger"

arkadaslar bole inat sey gormedim yok abi hic birsekilde engel olamiyorum.
transparent proxi yide kapatiyorumbu arada hani prox uzerinden cikamasin
diye genede olmuyo kurallarimin tamami asagidaki gibi belki bisey
kaciriyorum

iptables -A FORWARD -s 10.10.20.27/32 <http://10.10.20.27/32> -p tcp --dport
1863 -j ACCEPT
iptables -A FORWARD -s 10.10.20.60/32 <http://10.10.20.60/32> -p tcp --dport
1863 -j ACCEPT
iptables -A FORWARD -s 10.10.20.4/32 <http://10.10.20.4/32> -p tcp --dport
1863 -j ACCEPT
iptables -A FORWARD -s 10.10.20.5/32 <http://10.10.20.5/32> -p tcp --dport
1863 -j ACCEPT

# Block IRC
iptables -A FORWARD -s 0/0 -p tcp --dport 194 -j REJECT
# Data
iptables -A FORWARD -s 0/0 -p tcp --dport 20 -j REJECT
# Block Instant Messaging
# AIM
iptables -A FORWARD -s 0/0 -p tcp --dport 5190 -j REJECT
# AIM Images
iptables -A FORWARD -s 0/0 -p tcp --dport 4443 -j REJECT
# MSN Messenger
iptables -A FORWARD -s 0/0 -p tcp --dport 1863 -j REJECT
# Shoutcast
iptables -A INPUT -s 0/0 -p tcp --sport 8888 -j REJECT
iptables -A OUTPUT -s 0/0 -p tcp --dport 8888 -j REJECT
# Block ICQ
iptables -A FORWARD -s 0/0 -p tcp --dport 1024 -j REJECT
iptables -A FORWARD -s 0/0 -p udp --dport 4000 -j REJECT
iptables -A FORWARD -s 0/0 -d www.icqproxy.com <http://www.icqproxy.com> -j
REJECT

# Google Talk / Jabber
iptables -A FORWARD -p TCP --dport 5222 -j REJECT
iptables -A FORWARD -d talk.l.google.com <http://talk.l.google.com> -j
REJECT
iptables -A FORWARD -s 0/0 -p tcp --destination-port 5222 -j REJECT
iptables -A FORWARD -s 0/0 -p tcp --destination-port 5223 -j REJECT

# Yahoo Messenger
iptables -A PREROUTING -t mangle -s 0/0 -p tcp --dport 5000:5101 -j DROP
iptables -A PREROUTING -t mangle -s 0/0 -p udp --dport 5000:5101 -j DROP
iptables -A PREROUTING -t mangle -s 0/0 -p tcp --dport 5050 -j DROP
iptables -A PREROUTING -t mangle -s 0/0 -p udp --dport 5050 -j DROP
#
iptables -t nat -A POSTROUTING -o eth2 -j MASQUERADE
iptables -A FORWARD -j ACCEPT
iptables -t nat -A POSTROUTING -d 10.10.10.0/24 <http://10.10.10.0/24> -j
SNAT --to-source 10.10.10.6 <http://10.10.10.6>
iptables -t nat -A PREROUTING -p tcp -d
192.168.20.110<http://192.168.20.110>--destination-port 80 -j RETURN
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT
--to-ports 3128

On 9/19/05, Murat Aksoy <murataksoy@gmail.com> wrote:
>
> Birde böyle deneyin
>
> iptables -I PREROUTING -t mangle -s 192.168.0.0/24 <http://192.168.0.0/24>-p tcp --dport
> 5000:5001 -j DROP
>
> iptables -I PREROUTING -t mangle -s 192.168.0.0/24 <http://192.168.0.0/24>-p udp --dport
> 5000:5001 -j DROP
>
> ....
>
> 19.09.2005 tarihinde Mustafa Özbakir <admin@suzertekstil.com.tr> yazmış:
> > Merhaba;
> >
> > Huzeyfe Bey'in soylediklerine ek olarak bu kurallarınız eğer MASQUAREDE
> > kullanıyorsanız ondan öneki satırlarda olmalı.maskeleme kullanıldıktan
> sonr
> > aypılan her turlu yasaklama çalışmıyor tecrubelerimce.
> >
> > ----- Original Message -----
> > From: AHMET ATES
> > To: Linux-sunucu@liste.linux.org.tr
> > Sent: Sunday, September 18, 2005 2:24 PM
> > Subject: [Linux-sunucu] yahoo messenger
> >
> > ne kadar ugrastiysam yahoo messenger i blocklayamadim.
> >
> > iptables -A FORWARD -p tcp --dport 5000:5001 -j REJECT
> > iptables -A FORWARD -p udp --dport 5000:5001 -j REJECT
> > iptables -A FORWARD -p tcp --dport 5050 -j REJECT
> > iptables -A FORWARD -d gateway.messenger.hotmail.com<http://gateway.messenger.hotmail.com>-j REJECT
> > iptables -A FORWARD -p tcp --dport 5050 -j REJECT
> > iptables -A FORWARD -p udp --dport 4000 -j REJECT
> >
> > iptables -A FORWARD -d 205.188.0.0/16 <http://205.188.0.0/16> -j REJECT
> > iptables -A FORWARD -d 64.12.0.0/16 <http://64.12.0.0/16> -j REJECT
> > iptables -A FORWARD -d 216.122.100.172/32 <http://216.122.100.172/32> -j
> REJECT
> > iptables -A FORWARD -d www.icqproxy.com <http://www.icqproxy.com> -j
> REJECT
> >
> > bunlarin hicbiri soruna cozumdegil bilgisi olan arkadaslardan yardim
> > bekliyorum
> >
> > tesekkur ederim
> >
> >
> >
> > ________________________________
> >
> >
> > _______________________________________________
> > Linux-sunucu mailing list
> > Linux-sunucu@liste.linux.org.tr
> > http://liste.linux.org.tr/mailman/listinfo/linux-sunucu
> >
> >
> >
> > _______________________________________________
> > Linux-sunucu mailing list
> > Linux-sunucu@liste.linux.org.tr
> > http://liste.linux.org.tr/mailman/listinfo/linux-sunucu
> >
> >
> >
>
>
> --
>
> Murat Aksoy
>
> _______________________________________________
> Linux-sunucu mailing list
> Linux-sunucu@liste.linux.org.tr
> http://liste.linux.org.tr/mailman/listinfo/linux-sunucu
>
>
>

_______________________________________________
Linux-sunucu mailing list
Linux-sunucu@liste.linux.org.tr
http://liste.linux.org.tr/mailman/listinfo/linux-sunucu

Previous message: Murat Aksoy: "Re: [Linux-sunucu] yahoo messenger"
In reply to: Murat Aksoy: "Re: [Linux-sunucu] yahoo messenger"
Next in thread: Huzeyfe Onal: "Re: [Linux-sunucu] yahoo messenger"

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view	Attachment view

Bu arsiv hypermail 2.1.2 tarafindan uretilmistir.