作者主題: Block ICQ (閱讀 19200 次)

newlife · « 於: 2003-05-16 14:22 »

I want block the icq in linux server,
how can I do it?
thx!

paulso · « **回覆 #1 於:** 2003-05-16 14:52 »

block from MS window to internet or linux platform to internet ?
use NAT ?

newlife · « **回覆 #2 於:** 2003-05-16 15:05 »

block MS windows to internet,
I use NAT with linux server!

paulso · « **回覆 #3 於:** 2003-05-16 15:17 »

icq 可以用不同的 port 與外界聯繫, 小弟的意見是block任何 from icq server的ip的 packet

不知其他大大有什麼意見呢

SaPow · « **回覆 #4 於:** 2003-05-16 21:29 »

你試一下,我目前是這樣做~~

LAN_IF=eth1
LAN_IP_PUB=192.168.1.0/24
以上兩個設定視你網路狀況而定

#MSN
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB --dport 1863 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 64.4.13.0/24 --dport 80 -j DROP

#ICQ
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB --dport 5190 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 64.12.163.130 --dport 80 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 64.12.163.132 --dport 80 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 64.12.163.134 --dport 80 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 64.12.163.136 --dport 80 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 205.188.248.89 --dport 80 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 64.12.164.249 --dport 80 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 205.188.248.25 --dport 80 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 205.188.248.57 --dport 80 -j DROP

#YAHOO MSG
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB --dport 5050 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 216.136.130.0/24 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 216.136.175.0/24 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 216.136.224.0/24 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 216.136.225.0/24 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 216.136.226.0/24 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 216.136.227.0/24 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 216.136.233.0/24 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 66.163.173.0/24 -j DROP
iptables -t nat -A PREROUTING -p tcp -i $LAN_IF -s $LAN_IP_PUB -d 66.163.168.0/24 -j DROP

newlife · « **回覆 #5 於:** 2003-05-17 12:23 »

that's ok, thx!

酷!學園

最新消息: