- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - Linux
- >
- blocking ports
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-31-2003 04:37 AM
тАО05-31-2003 04:37 AM
blocking ports
how can i block kaaza ports. i'm using squid+masq~ing.
guide me through the rest
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-31-2003 11:52 PM
тАО05-31-2003 11:52 PM
Re: blocking ports
Masquerading Made Simple HOWTO.
are U using iptables ?
what is the kazaa port number ?
inbound, outbound kazaa or both ?
if it is iptables, post results of:
iptables -L
and
iptables -t nat -L
Security-wise you are probably better of blocking everything inbound (from the internet), and allowing only specific services through...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-01-2003 09:10 PM
тАО06-01-2003 09:10 PM
Re: blocking ports
i use iptables for that purpose
echo "1" > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A Postrouting -s 150.100.16.0/255.255.240.0 -d ! 150.100.16.0/255.255.240.0 -o ppp0 -j MASQUERADE
Now what do u say? how can i block Kaaza.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-01-2003 11:26 PM
тАО06-01-2003 11:26 PM
Re: blocking ports
kaaza uses port 1214
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-02-2003 10:45 PM
тАО06-02-2003 10:45 PM
Re: blocking ports
# iptables -A FORWARD --source-port 1214 -j DROP
# iptables -A FORWARD --destination-port 1214 -j DROP
you can also read the iptables' man page (# man iptables) and
some linux HOWTOs like
Firewall-HOWTO
IP-Masquerade-HOWTO
that you can find at http://www.tldp.org
hope this helps,
Claudio
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-03-2003 06:59 AM
тАО06-03-2003 06:59 AM
Re: blocking ports
i'm still unable to solve that issue. i added the rules but i think i couldn't get the correct port of Kazaa.
Do anyone have, plz tell me how to do that
thanx
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-03-2003 07:14 AM
тАО06-03-2003 07:14 AM
Re: blocking ports
iptables -A FORWARD -m recent --name kazaa --rcheck --seconds 60 -j DROP
iptables -A FORWARD -i ppp0 -p tcp -m string --string 'X-Kazaa' -m recent --name kazaa --set -j DROP
BTW, why not assigning points to previous people who tried to help ? :-))
hth
J
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-03-2003 11:10 PM
тАО06-03-2003 11:10 PM
Re: blocking ports
thank u for co-operation
but the bad thing is that we r unable to block kazaa, i offer points to the great sodiers of LINUX who helps me to block kazaa.
plz help me
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-03-2003 11:35 PM
тАО06-03-2003 11:35 PM
Re: blocking ports
... I don't know how kazaa protocol works... sorry :-)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-04-2003 12:24 AM
тАО06-04-2003 12:24 AM
Re: blocking ports
What doesn't work with the script I suggested ? It works on my network.
The idea is not to block the 1214 or any other specific port, as new Kazaa opens changing ports. So what we do is to check the string in the packets, that are related to kazaa, both X-kazza incoming packets and kazaa local replies.
Could you post your iptables here so we can check together what is missing ?
Otherwise, as Claudio suggested, best is to block everything as a default policy, and only accept what you know that is needed (port 21, 25, 80 and so on).
the only problem is that you will have customers complaining all the time not to be able to ICQ and so on...
Yours
Jerome