Tineeminee wrote:

Thanks for your all your help I did manage to block MSN by writing the following commands /sbin/ipchains -A input -p TCP -b --sport 1863 -j DENY

It should better be --dport. '-b' is ok but not advisable(as per man page) nor needed.

/sbin/ipchains -A output -p TCP -d 192.168.1.0/24 -s 216.0.0.0/8 23 -l -j DENY

again -d should be -s and -s should be -d, logically. Plus I dont think MSN has taken full 216. class, but anyway its fine for you as you are blocking only telnet(port 23).

Can anyone please let me know if there is any way i can know which ports or servers are being used by the users on the N/W.

man netstat should help to know connection ports.

Amish.