Re: access to icq

To: debian-firewall@lists.debian.org
Subject: Re: access to icq
From: Michael Wood <wood@kingsley.co.za>
Date: Tue, 26 Jun 2001 08:18:23 +0200
Message-id: <20010626081823.A8967@lion.kingsley.co.za>
Mail-followup-to: Michael Wood <wood@kingsley.co.za>, debian-firewall@lists.debian.org
In-reply-to: <00bf01c0fdfa$dc416b20$ad0110ac@cybernet>; from abu@nirwanalestari.com on Tue, Jun 26, 2001 at 11:45:39AM +0700
References: <00bf01c0fdfa$dc416b20$ad0110ac@cybernet>

On Tue, Jun 26, 2001 at 11:45:39AM +0700, Abu H R wrote:
> In squid 2.4, i don't know why the client still be able
> connect to icq, even the port to http was blocked.
> how the icq work and use what port?

ICQ has nothing to do with Squid.  ICQ uses port 4000 and also
some others AFAIK.  If ICQ still works, it means you have
routing enabled.

You said your network looks like this, right?

                       +---[user1]
                       |
(Internet)---[Squid]---+---[user2]
                       |
                       +---[user3]

If you want to stop the users talking to things on the Internet,
then disable IP forwarding on the Squid box (and set the policy
for the forward chain to "DENY" (or "DROP") or "REJECT" for good
measure.)

If you want to stop it just for certain users, you'll need to
keep IP forwarding enabled and set up firewalling rules to block
certain IP addresses.

Another thing you might try:  ICQ supports using a socks proxy.
You can install Dante (socks 4/5 proxy) and configure it to
allow certain IP addresses and not others.

-- 
Michael Wood        | Tel: +27 21 762 0276 | http://www.kingsley.co.za/
wood@kingsley.co.za | Fax: +27 21 761 9930 | Kingsley Technologies

Reply to:

References:
- access to icq
  - From: "Abu H R" <abu@nirwanalestari.com>

Prev by Date: access to icq
Next by Date: Re: VPN and @Home
Previous by thread: access to icq
Next by thread: Re: access to icq
Index(es):
- Date
- Thread