Hi
I was wondering when i block the ports of IRC, i would still be able to connect through the
alternatives.
Just for academic purposes, are there any packetfiltering (signature-based) firewall for
experiemental?
A Happy m0n0 user
John
Federico Krum wrote:
>Blocking these traffic worked for me.
>
> Proto Source Port Destination Port Description
> TCP/UDP irc * * 6660 - 7000 6667
> TCP/UDP irc 113 * * 113 irc
> TCP/UDP yahoo * 216.155.193.166/24 * 216.155.193.166
> TCP/UDP msn * 216.178.160.34/24 * 216.178.160.34
> TCP/UDP msn * 213.249.102.94/24 * 213.249.102.94
> TCP/UDP msn * 213.199.154.54/24 * 213.199.154.54
> TCP/UDP msn * 213.199.154.11/24 * 213.199.154.11
> TCP/UDP msn * 207.68.178.239/24 * 207.68.178.239
> TCP/UDP msn * 207.46.110.254/24 * 207.46.110.254
> TCP/UDP msn * 207.46.110.48/24 * 207.46.110.48
> TCP/UDP msn * 207.46.107.33/24 * 207.46.107.33
> TCP/UDP msn * 207.46.106.28/24 * 207.46.106.28
> TCP/UDP msn * 195.33.103.52/24 * 195.33.103.52
> TCP/UDP msn * 194.130.106.132/24 * 194.130.106.132
>
>
>-----Mensaje original-----
>De: Holger Bauer [mailto:Holger dot Bauer at citec dash ag dot de]
>Enviado el: Wednesday, January 12, 2005 7:51 AM
>Para: Abdul Aziz; m0n0wall at lists dot m0n0 dot ch
>Asunto: AW: [m0n0wall] Block msn and yahoo messenger
>
>Hi,
>
>you can sent the logon domainnames of the messengers to nirvana by entering
>DNS-entrys in your DNS-Server to a static IP that doesn´t exist. I once had
>a list with all logondomains for messengers (for example something like:
>logon.yahoo.com). If you use the m0n0 for DNS just add the DNS-entries
>there. Use google to find the logondomains of the messengerservices. No
>logon, no chat! ;-)
>Of course this could be overriden by using another DNS-Server or entering
>DNS-entries in a local machines hostfile but the user first has to find out
>why the messengers don´t connect to do so, right? There are also Webversions
>of the Messengers, if you want to block those too specify also entries for
>these like "go.icq.com".
>
>Blocking special Ports won´t help, as many messengers try to connect via
>port 80 (http) if the native ports are blocked, so the only way with mono I
>know is using fake DNS-entries.
>
>Regards,
>Holger Bauer
>
>
>-----Ursprüngliche Nachricht-----
>Von: Abdul Aziz [mailto:aaziz at justbooking dot com]
>Gesendet: Mittwoch, 12. Januar 2005 11:26
>An: m0n0wall at lists dot m0n0 dot ch
>Betreff: [m0n0wall] Block msn and yahoo messenger
>
>
>
>
>
>Dear All,
>
>How can we block msn messenger as well as yahoo messenger
>plz reply as soon as possible.
>
>Regards:
>A.Aziz
>
>
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>
>
>____________
>Virus checked by G DATA AntiVirusKit
>Version: AVK 15.0.2393 from 12.01.2005
>Virus news: www.antiviruslab.com
>
>____________
>Virus checked by G DATA AntiVirusKit
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>
>
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>
>
>
| 