1 Jul
2004
1 Jul
'04
1:35 p.m.
Hi,
The method specified by sachin is good. blocking ip address or whole subnet will not be fair. so u will have to face different types of problems too. coz the domain u r going to block have lot of other services that might be needed by the users.
Think just to block msn and yahoo ports.
Regards,
--
Joel n.solanki
Systems Administrator
(M) 91-9825500258
D2V ISP PVT LTD
http://www.d2visp.com
On Thu, 2004-07-01 at 12:42, Sachin Rase wrote:
> Hi vaibhav ,
>
> I have following sript which blocks MSN
>
>
> #----------------------------------------------
> # MSN Messanger
> #----------------------------------------------
> #Method 0
> /sbin/iptables -A FORWARD -p TCP --dport 1863 -j
> REJECT
> /sbin/iptables -A FORWARD -d 64.4.13.0/24 -j REJECT
>
> #Method 1
>
> iptables -t mangle -A PREROUTING -p tcp --dport 1863
> -j DROP
> iptables -t mangle -A PREROUTING -d 63.208.13.126 -j
> DROP
> iptables -t mangle -A PREROUTING -d 64.4.12.200 -j
> DROP
> iptables -t mangle -A PREROUTING -d 64.4.12.201 -j
> DROP
> iptables -t mangle -A PREROUTING -d 65.54.131.249 -j
> DROP
> iptables -t mangle -A PREROUTING -d 65.54.194.118 -j
> DROP
> iptables -t mangle -A PREROUTING -d 65.54.211.61 -j
> DROP
> iptables -t mangle -A PREROUTING -d 207.46.104.20 -j
> DROP
> iptables -t mangle -A PREROUTING -d 207.46.110.2 -j
> DROP
>
>
>
> for yahoo u need to block there login sever . i.e
> messanger.yahoo.com and some login
> also the member listing at yahoo.com
>
> the firewaill rules is as below .
>
>
> # Yahoo! Messenger
> /sbin/iptables -A FORWARD -p TCP --dport 5000:5010 -j
> DROP
> /sbin/iptables -A FORWARD -p TCP --dport 5050:5050 -j
> DROP
>
> /sbin/iptables -t mangle -A PREROUTING -p tcp --dport
> 5050:5050 -j DROP
>
> #/sbin/iptables -A FORWARD -d yahoo.com -j DROP
>
>
> # .messenger.yahoo.com
> #.msg.yahoo.com
>
> #iptables -A FORWARD -d 216.136.223.0/24 -j REJECT
> iptables -A FORWARD -d 216.136.223.0/24 -j REJECT
> iptables -A FORWARD -d 216.136.224.0/24 -j REJECT
> # Address book
> iptables -A FORWARD -d 216.136.227.0/24 -j REJECT
> iptables -A FORWARD -d 216.136.233.0/24 -j REJECT
> #csXXX.msg.dcn.yahoo.com
> iptables -A FORWARD -d 216.155.193.0/24 -j REJECT
> iptables -A FORWARD -d 216.155.194.191 -j REJECT
> iptables -A FORWARD -d 216.155.194.207 -j REJECT
>
> iptables -A FORWARD -d 216.109.116.191 -j REJECT
> iptables -A FORWARD -d 66.163.172.117 -j REJECT
> # http://data1.my.vip.sc5.yahoo.com/
> iptables -A FORWARD -d 66.163.175.128 -j REJECT
>
> iptables -A FORWARD -d 216.136.225.238 -j REJECT
> iptables -A FORWARD -d 216.155.192.206 -j REJECT
> # messenger.yahoo.com
> iptables -A FORWARD -d 66.163.172.116 -j REJECT
> # wcs2.msg.dcn.yahoo.com
> iptables -A FORWARD -d 216.155.193.205 -j REJECT
>
>
>
>
>
>
> =====
> +------------------------------------+
> |Touch the limits with GNU/Linux |
> +------------------------------------+
>
>
>
> __________________________________
> Do you Yahoo!?
> Yahoo! Mail Address AutoComplete - You start. We finish.
> http://promotions.yahoo.com/new_mail