2006/7/8, ChrisDB <mlist.d@virgin.net>:
On 7 Jul 2006, at 07:47, Felipe Figueiredo wrote: > Maybe something like: permit any quantity for HTTP <snip> I think some other guy hinted at this - apologies if you already figured - but several p2p systems will happily use port 80, and some faqs/manuals (eDonkey etc) even encourage (manually) setting this as a quick/dirty firewall getter-rounder. Perhaps you need to go deeper than just a port, but I've never done that stuff - sorry can't be more help there.
so (one more time..) , layer7 (application layer) patch for iptables is what You want. regards -- Wojciech Ziniewicz | jid:zeth@chrome.pl http://silenceproject.org | http://zetho.wordpress.com