From mboxrd@z Thu Jan  1 00:00:00 1970
From: =?ISO-8859-1?Q?G=E1sp=E1r_Lajos?= <swifty@freemail.hu>
Subject: Re: how to filter on applications?
Date: Fri, 27 Oct 2006 10:27:00 +0200
Message-ID: <4541C2D4.1030903@freemail.hu>
References: <20061026185357.GA4832@trane.vulkor.net>	<46522.136.1.1.154.1161890722.squirrel@mail.addictz.org>
	<20061027082201.GA4298@trane.vulkor.net>
Mime-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Return-path: <netfilter-bounces@lists.netfilter.org>
In-Reply-To: <20061027082201.GA4298@trane.vulkor.net>
List-Id: <netfilter.vger.kernel.org>
List-Unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
List-Archive: </pipermail/netfilter>
List-Post: <mailto:netfilter@lists.netfilter.org>
List-Help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-Subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
Sender: netfilter-bounces@lists.netfilter.org
Errors-To: netfilter-bounces@lists.netfilter.org
Content-Type: text/plain; charset="iso-8859-1"; format="flowed"
To: vwf <vwf@vulkor.net>
Cc: Mike <lists@addictz.org>, netfilter@lists.netfilter.org


vwf =EDrta:
> On Thu, Oct 26, 2006 at 03:25:22PM -0400, Mike wrote:
>  =20
>> vwf wrote:
>>    =20
>>> Hello,
>>>
>>> I want to filter outgoing traffic based on the originating applicatio=
n.
>>> How do I do this? Please tell me iptables can do this. If not, how ca=
n I
>>> lock down my system?
>>>      =20
>
>  =20
>> http://l7-filter.sourceforge.net/
>>    =20
>
> This filters on protocol, not on application.
>
>  =20
Yes! Because APPLICATIONS use PROTOCOLS to communicate with....

What do you do not understand?

Swifty