Hi vaibhav ,
I have following sript which blocks MSN
#---------------------------------------------- # MSN Messanger #---------------------------------------------- #Method 0 /sbin/iptables -A FORWARD -p TCP --dport 1863 -j REJECT /sbin/iptables -A FORWARD -d 64.4.13.0/24 -j REJECT
#Method 1
iptables -t mangle -A PREROUTING -p tcp --dport 1863 -j DROP iptables -t mangle -A PREROUTING -d 63.208.13.126 -j DROP iptables -t mangle -A PREROUTING -d 64.4.12.200 -j DROP iptables -t mangle -A PREROUTING -d 64.4.12.201 -j DROP iptables -t mangle -A PREROUTING -d 65.54.131.249 -j DROP iptables -t mangle -A PREROUTING -d 65.54.194.118 -j DROP iptables -t mangle -A PREROUTING -d 65.54.211.61 -j DROP iptables -t mangle -A PREROUTING -d 207.46.104.20 -j DROP iptables -t mangle -A PREROUTING -d 207.46.110.2 -j DROP
for yahoo u need to block there login sever . i.e messanger.yahoo.com and some login also the member listing at yahoo.com
the firewaill rules is as below .
# Yahoo! Messenger /sbin/iptables -A FORWARD -p TCP --dport 5000:5010 -j DROP /sbin/iptables -A FORWARD -p TCP --dport 5050:5050 -j DROP
/sbin/iptables -t mangle -A PREROUTING -p tcp --dport 5050:5050 -j DROP
#/sbin/iptables -A FORWARD -d yahoo.com -j DROP
# .messenger.yahoo.com #.msg.yahoo.com
#iptables -A FORWARD -d 216.136.223.0/24 -j REJECT iptables -A FORWARD -d 216.136.223.0/24 -j REJECT iptables -A FORWARD -d 216.136.224.0/24 -j REJECT # Address book iptables -A FORWARD -d 216.136.227.0/24 -j REJECT iptables -A FORWARD -d 216.136.233.0/24 -j REJECT #csXXX.msg.dcn.yahoo.com iptables -A FORWARD -d 216.155.193.0/24 -j REJECT iptables -A FORWARD -d 216.155.194.191 -j REJECT iptables -A FORWARD -d 216.155.194.207 -j REJECT
iptables -A FORWARD -d 216.109.116.191 -j REJECT iptables -A FORWARD -d 66.163.172.117 -j REJECT # http://data1.my.vip.sc5.yahoo.com/ iptables -A FORWARD -d 66.163.175.128 -j REJECT
iptables -A FORWARD -d 216.136.225.238 -j REJECT iptables -A FORWARD -d 216.155.192.206 -j REJECT # messenger.yahoo.com iptables -A FORWARD -d 66.163.172.116 -j REJECT # wcs2.msg.dcn.yahoo.com iptables -A FORWARD -d 216.155.193.205 -j REJECT
===== +------------------------------------+ |Touch the limits with GNU/Linux | +------------------------------------+
__________________________________ Do you Yahoo!? Yahoo! Mail Address AutoComplete - You start. We finish. http://promotions.yahoo.com/new_mail
Hi,
The method specified by sachin is good. blocking ip address or whole subnet will not be fair. so u will have to face different types of problems too. coz the domain u r going to block have lot of other services that might be needed by the users.
Think just to block msn and yahoo ports.
Regards,