Error responce when limiting access

All of lore.kernel.org
 help / color / mirror / Atom feed

* Error responce when limiting access
@ 2003-07-07 11:04 Mogens Valentin
  2003-07-07 14:03 ` Chris Wilson
  2003-07-08  4:40 ` Matt Hellman
  0 siblings, 2 replies; 3+ messages in thread
From: Mogens Valentin @ 2003-07-07 11:04 UTC (permalink / raw)
  To: Netfilter

Using iptables, I can of cause deny access to cirtain IP addresses or
websites, however, I'd like to make sure clients do not just get a
timeout, not found or something alike.
AFICS, it'll be difficult to set some errorresponce a browser can
understand, allowing it to display a meaningful errorresponce.

-- 
Kind regards / venlig hilsen,
Mogens Valentin, Mr Dev

IT Networking, Security, Server Setup
www.danbbs.dk/~monz   mrdev@danbbs.dk
Phone +45 32 525 878  Cell 51 227 668

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: Error responce when limiting access
  2003-07-07 11:04 Error responce when limiting access Mogens Valentin
@ 2003-07-07 14:03 ` Chris Wilson
  2003-07-08  4:40 ` Matt Hellman
  1 sibling, 0 replies; 3+ messages in thread
From: Chris Wilson @ 2003-07-07 14:03 UTC (permalink / raw)
  To: Mogens Valentin; +Cc: Netfilter

Hi Mogens,

> Using iptables, I can of cause deny access to cirtain IP addresses or
> websites, however, I'd like to make sure clients do not just get a
> timeout, not found or something alike.
> AFICS, it'll be difficult to set some errorresponce a browser can
> understand, allowing it to display a meaningful errorresponce.

Use a DNAT rule to redirect them to a local web server, or a Squid proxy 
which is configured to deny all requests. Then you can configure these 
to serve up a suitable error page which you can design yourself.

Cheers, Chris.
-- 
   ___ __     _
 / __// / ,__(_)_  | Chris Wilson -- UNIX Firewall Lead Developer |
/ (_ / ,\/ _/ /_ \ | NetServers.co.uk http://www.netservers.co.uk |
\ _//_/_/_//_/___/ | 21 Signet Court, Cambridge, UK. 01223 576516 |



^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: Error responce when limiting access
  2003-07-07 11:04 Error responce when limiting access Mogens Valentin
  2003-07-07 14:03 ` Chris Wilson
@ 2003-07-08  4:40 ` Matt Hellman
  1 sibling, 0 replies; 3+ messages in thread
From: Matt Hellman @ 2003-07-08  4:40 UTC (permalink / raw)
  To: Netfilter

Mogens Valentin wrote:

>Using iptables, I can of cause deny access to cirtain IP addresses or
>websites, however, I'd like to make sure clients do not just get a
>timeout, not found or something alike.
>AFICS, it'll be difficult to set some errorresponce a browser can
>understand, allowing it to display a meaningful errorresponce.
>
>  
>
Use a tcp reset instead of just dropping the packet.  Try -j REJECT.



^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2003-07-08  4:40 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-07-07 11:04 Error responce when limiting access Mogens Valentin
2003-07-07 14:03 ` Chris Wilson
2003-07-08  4:40 ` Matt Hellman

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.