[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] How to block MSN using SuSEfirewall2?

On Fri, 2004-02-20 at 10:11, Arjen de Korte wrote:
> On Friday 20 February 2004 07:07, Michael James wrote:
> > How can I turn on a block on MSN
> >  so there is only 1 hour a day it works?
> >
> > The house server (Suse8.2 soon to be 9.0)
> >  has the ADSL connection
> >  and runs SuSEfirewall2, NAT, squid, DNS, etc.
> Since you're running Squid already, I would suggest to solve it there. If you 
> didn't modify the 'Safe_ports', the port MSN chat uses (1863 if I'm not 
> mistaken) is in the defined ones. Remove it from this range (by splitting the 
> 1025-65535 region in two, excluding this port) and create a new set of rules, 
> only allowing access to that port at a certain time of the day for your 
> daughter. Read up on the ACL settings of Squid. I wouldn't mess with your 
> firewall if you have Squid running already (if you need to solve things like 
> this in your firewall, what's the point of using proxies then...)
So, are you saying that squid can proxy any protocol?

> Best regards,
> Arjen
Raymond Leach <raymondl@xxxxxxxxxxxxxxxxxxxxxx>
Network Support Specialist
"lynx -source http://www.rchq.co.za/raymondl.asc | gpg --import"
Key fingerprint = 7209 A695 9EE0 E971 A9AD  00EE 8757 EE47 F06F FB28

Attachment: signature.asc
Description: This is a digitally signed message part