Hi, It's a funny way of doing it, but here it is. Assuming you have control of the DNS server your users are using, usually obtained by DHCP, you can setup an empty authoritative zone for kazaa.com so that it resolves to nothing, done, won't even bother your firewall. Yang -----Original Message----- From: jludwig [mailto:wralphie@xxxxxxxxxxx] Sent: Wednesday, May 05, 2004 3:40 PM To: For users of Fedora Core releases Subject: Re: How to block Kazaa; NIS authentication On Wed, 2004-05-05 at 15:03, Markku Kolkka wrote: > Artur Sampaio kirjoitti viestissään (lähetysaika keskiviikko, 5. > toukokuuta 2004 21:12): > > 1) The W2k user insist in use kazaa, that was prohibited from > > enterprise's owner.....I wish to block the port of kazaa on > > the server (iptables??). someone knows how? > > http://www.linuxjournal.com/article.php?sid=6945 > > -- > Markku Kolkka > markku.kolkka@xxxxxx Blocking a port with iptables is rather trivial. A couple of examples. $IPTABLES -A INPUT -p udp --sport 23 -s 0/0 -j LOG --log-prefix \ "Incorrect DNS source" $IPTABLES -A INPUT -i lo --sport 631 -j ACCEPT $IPTABLES -A FORWARD -o $EXTIF -p tcp --dport 137 -j DROP $IPTABLES -A FORWARD -o $EXTIF -p tcp --dport 138 -j DROP $IPTABLES -A FORWARD -o $EXTIF -p tcp --dport 139 -j DROP See http://www.linuxguruz.com/iptables/ for more and better information -- jludwig <wralphie@xxxxxxxxxxx> -- fedora-list mailing list fedora-list@xxxxxxxxxx To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
