Re: Bloquear orkut com eficiencia - SQUID + IPTABLES?

To: debian-user-portuguese@lists.debian.org
Subject: Re: Bloquear orkut com eficiencia - SQUID + IPTABLES?
From: Davi <davividal@siscompar.com.br>
Date: Fri, 13 Apr 2007 09:13:16 -0300
Message-id: <[🔎] 200704130913.16904.davividal@siscompar.com.br>
In-reply-to: <[🔎] 461F71C1.4090005@terra.com.br>
References: <[🔎] 461F71C1.4090005@terra.com.br>

Em Sexta 13 Abril 2007 09:04, Cássio Rosas escreveu:
> Olá pessoal, bom dia, tudo bem!?
>
> abaixo segue as regras do iptables:
>
>  iptables -A INPUT -d www.orkut.com -j DROP
>    iptables -A INPUT -s www.orkut.com -j DROP
>    iptables -A FORWARD -d www.orkut.com -j DROP
>    iptables -A FORWARD -s www.orkut.com -j DROP
>    iptables -A INPUT -s www.orkut.com -p tcp -m multiport --dport 443,80
> -j DROP
>    iptables -A INPUT -d www.orkut.com -p tcp -m multiport --dport 443,80
> -j DROP
>    iptables -A FORWARD -s www.orkut.com -p tcp -m multiport --dport
> 443,80 -j DROP
>    iptables -A FORWARD -d www.orkut.com -p tcp -m multiport --dport
> 443,80 -j DROP
>
> Sei que poderia fazer tudo numa linha só, mas foi para ter certeza de
> que estava fazendo de forma correta, rs.
>
> E no squid:
>
> acl blockedsites url_regex -i "/etc/squid/bloqueados/block.txt"
> acl unblockedsites url_regex -i "/etc/squid/bloqueados/unblock.txt"
> acl malware_block_list url_regex -i "/etc/squid/malware_block_list.txt"
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl SSL_ports port 443 563
> acl Safe_ports port 80  # http
> acl Safe_ports port 21  # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70  # gopher
> acl Safe_ports port 210  # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280  # http-mgmt
> acl Safe_ports port 488  # gss-http
> acl Safe_ports port 591  # filemaker
> acl Safe_ports port 777  # multiling http
> acl Safe_ports port 901  # SWAT
> acl purge method PURGE
> acl CONNECT method CONNECT
> acl acesso_total src 192.168.10.38
> acl acesso_total src 192.168.10.19
> always_direct allow all
> http_access allow acesso_total
> http_access allow manager localhost
> http_access deny manager
> http_access deny blockedsites !unblockedsites
> http_access deny malware_block_list
> deny_info http://malware.hiperlinks.com.br/denied.shtml malware_block_list
> http_access allow purge localhost
> http_access deny purge
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost
> acl redelocal src 192.168.10.0/24
> http_access allow redelocal
>
>
> Se alguem souber de algo pu puder dar alguma dica, agradeço.
>
> Abraços e obrigado desde já.
>
> --
>
> Atenciosamente,
>
>
> Cássio Rosas

Tentou colocar algumas regras no OUTPUT do Iptables??
Não é isso... Em todo o caso...

Tentou acessar você mesmo o orkut e usar um tcpdump ou iptraf ou qualquer 
coisa assim???

[]s



-- 
Davi Vidal
davividal@siscompar.com.br
davividal@gmail.com
--

Agora com fortune:
"Apples  have  meant  trouble  since  eden.
	-- MaDsen Wikholm, mwikholm@at8.abo.fi"

Reply to:

References:
- Bloquear orkut com eficiencia - SQUID + IPTABLES?
  - From: Cássio Rosas <kms.publicidade@terra.com.br>

Prev by Date: Re: Dúvida compilar kernel
Next by Date: Manual Sarg 2.2.2
Previous by thread: Bloquear orkut com eficiencia - SQUID + IPTABLES?
Next by thread: Re: Bloquear orkut com eficiencia - SQUID + IPTABLES?
Index(es):
- Date
- Thread