Re: blocking Kazaa on iptables?

To: "Matias G. Lambert ( OSInet )" <matiaslambert@osinet.com.ar>, <debian-firewall@lists.debian.org>
Subject: Re: blocking Kazaa on iptables?
From: "Genilto Dallo" <dallo@netconta.com.br>
Date: Wed, 13 Aug 2003 13:29:48 -0300
Message-id: <[🔎] 00d201c361b8$ddaaa250$10f0a3c8@gd>
References: <[🔎] OGEDIKMHGNGEPGKOGGABEEKDCCAA.matiaslambert@osinet.com.ar>

It's possible...

I'm using this rules in my firewalls:

iptables -A PREROUTING -t mangle -p tcp --sport ftp-data -j TOS --set-tos
Minimize-Throughput
iptables -A PREROUTING -t mangle -p tcp --sport ftp -j TOS --set-tos
Minimize-Throughput
iptables -A PREROUTING -t mangle -p tcp --sport www -j TOS --set-tos
Maximize-Throughput
and some known ports...

try to use the rule string with this TOS, or redirecting to another route
with tc class based queueing(cbq)


[]s
gd


----- Original Message -----
From: "Matias G. Lambert ( OSInet )" <matiaslambert@osinet.com.ar>
To: <debian-firewall@lists.debian.org>
Sent: Wednesday, August 13, 2003 12:05 PM
Subject: RE: blocking Kazaa on iptables?


> Is it possible to limit traffic instead of blocking with that feature?
> Or how can I limit that kazaa an emule traffic?
>
> Matias Lambert
> OSInet Telecomunicaciones
> Capital Federal - Buenos Aires
> Argentina - CA1185ACA
> matiaslambert@osinet.com.ar
> http://www.osinet.com.ar
>
> -----Mensaje original-----
> De: Genilto Dallo [mailto:dallo@netconta.com.br]
> Enviado el: Martes, 12 de Agosto de 2003 02:54 p.m.
> Para: Fabricio Cannini; debian-firewall@lists.debian.org
> Asunto: Re: blocking Kazaa on iptables?
>
>
> yes...
>
> ----- Original Message -----
> From: "Fabricio Cannini" <fabriciocannini@yahoo.com.br>
> To: "Genilto Dallo" <dallo@netconta.com.br>;
> <debian-firewall@lists.debian.org>
> Sent: Tuesday, August 12, 2003 1:16 PM
> Subject: Re: blocking Kazaa on iptables?
>
>
> > Does it blocks kazaa running on port 80?
> >
> >
> >
> >  --- Genilto Dallo <dallo@netconta.com.br> escreveu: >
> > You must apply the patch for "string match" to the
> > > kernel source.
> > >
> > <http://www.iptables.org/documentation/pomlist/pom-extra.html#string>
> > >
> > > before use this rules...
> > >
> > > # iptables -m string --string "X-Kazaa-Username:" -j
> > > DROP
> > > # iptables -m string --string "X-Kazaa-Network:" -j
> > > DROP
> > > # iptables -m string --string "X-Kazaa-IP:" -j DROP
> > > # iptables -m string --string "X-Kazaa-SupernodeIP:"
> > > -j DROP
> > >
> > >
> > > []s
> > > Genilto Dallo
> > >
> > > ----- Original Message -----
> > > From: <breno.moiana@partekforest.com>
> > > To: <debian-firewall@lists.debian.org>
> > > Sent: Friday, August 08, 2003 7:05 PM
> > > Subject: blocking Kazaa on iptables?
> > >
> > >
> > > > I've searched on google for that, but all I found
> > > were unanswered
> > > questions.
> > > >
> > > > How to block kazaa with a linux-based firewall?
> > > I'm using 2.4 kernel, so
> > > I'm
> > > > open to IPTables.
> > > >
> > > > The only thing I saw that *might* be of use is
> > > this comment on a forum
> > > thread:
> > > >
> > > > ---------begin-------
> > > > prøv at kigge i det her spm - der er et iptables
> > > script.
> > > >
> > > > Der er bla følgende kode
> > > > #FastTrack (KaZaA, Grokster)
> > > > /sbin/iptables -A INSPECT -p TCP -m string
> > > --string "X-Kazaa-Username:" -j
> > > > INSDROP
> > > > /sbin/iptables -A INSPECT -p TCP -m string
> > > --string "X-Kazaa-Network:" -j
> > > > INSDROP
> > > > /sbin/iptables -A INSPECT -p TCP -m string
> > > --string
> > > "X-Kazaa-SupernodeIP:" -j
> > > > INSDROP
> > > > ---------end-------
> > > >
> > > > the address is:
> > > > http://www.eksperten.dk/spm/299949
> > > >
> > > > but I don't even know what language is that...
> > > > any ideas?
> > > >
> > > > Regards,
> > > >
> > > >
> > > > Breno Moiana
> > > >
> > >
> > -------------------------------------------------------------
> > > > "Science is organized knowledge. Wisdom is
> > > organized life."
> > > >
> > > > "Ciência é conhecimento organizado. Sabedoria é
> > > vida organizada."
> > > >     -- Immanuel Kant
> > > >
> > > >
> > > >
> > > >
> > > > --
> > > > To UNSUBSCRIBE, email to
> > > debian-firewall-request@lists.debian.org
> > > > with a subject of "unsubscribe". Trouble? Contact
> > > listmaster@lists.debian.org
> > > >
> > >
> > >
> > > --
> > > To UNSUBSCRIBE, email to
> > > debian-firewall-request@lists.debian.org
> > > with a subject of "unsubscribe". Trouble? Contact
> > > listmaster@lists.debian.org
> > >
> >
> > =====
> > "Se conhecer a ti e conhecer o teu inimigo,
> > não temerás o resultado de mil batalhas."
> > (Sun Tzu)
> > "If you know yourself and know your enemy,
> > won't fear the result of a thousand battles."
> > (Sun Tzu)
> >
> > _______________________________________________________________________
> > Conheça o novo Cadê? - Mais rápido, mais fácil e mais preciso.
> > Toda a web, 42 milhões de páginas brasileiras e nova busca por imagens!
> > http://www.cade.com.br
> >
> >
> > --
> > To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> > with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
>
>
> --
> To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
>
>

Reply to:

References:
- RE: blocking Kazaa on iptables?
  - From: "Matias G. Lambert ( OSInet )" <matiaslambert@osinet.com.ar>

Prev by Date: RE: blocking Kazaa on iptables?
Next by Date: subscribe
Previous by thread: RE: blocking Kazaa on iptables?
Next by thread: setting up two NICs
Index(es):
- Date
- Thread