linux poison RSS
linux poison Email

Block Messenger (AOL, Yahoo, MSN) services through Squid and Iptables

First of all you need to have a running copy of squid and you make transparent for your local
LAN. Add this to your squid.conf:

httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on

And this to your IPTABLES:

iptables -t nat -A PREROUTING -i eth1 -p tcp –dport 80 -j REDIRECT –to-port 3128
iptables -A OUTPUT -j ACCEPT -m state –state NEW,ESTABLISHED,RELATED
-o eth0 -p tcp –dport 80

…where eth0 is your external interface and eth1 your internal.

To block AOL IM and ICQ:
# iptables -A FORWARD –dport 5190 -j DROP
# iptables -A FORWARD -d login.oscar.aol.com -j DROP

To block MSN messenger:
# iptables -A FORWARD -p TCP –dport 1863 -j DROP
# iptables -A FORWARD -d 64.4.13.0/24 -j DROP

Kaaza Blocking
iptables -t nat -A POSTROUTING -s 150.100.16.0/255.255.240.0 -d ! 150.100.16.0/255.255.240.0 –dport 1214 –j DROP

Add following in squid.conf file

# Yahoo Messenger service
acl Yahoo-Mess dst 24.71.200.68/32 204.71.202.73/32 204.71.200.0/24
204.71.177.35/32 204.71.202.59/32 204.71.202.58/32 216.115.105.214/32
204.71.201.47/32 204.71.201.48/32 216.115.105.215/32
216.136.172.221/32 *.msg.yahoo.com
http_access deny Yahoo-Mess

# Trillian service
acl Trillian-Mess dst 66.216.70.167/32
http_access deny Trillian-Mess


0 comments:

Post a Comment

Related Posts with Thumbnails