From mboxrd@z Thu Jan  1 00:00:00 1970
From: Stef Coene <stef.coene@docum.org>
Date: Thu, 28 Aug 2003 17:54:41 +0000
Subject: Re: [LARTC] Layer 7 application blocking via tc/iptables?
Message-Id: <marc-lartc-106209337312904@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-106201614032501@msgid-missing>
In-Reply-To: <marc-lartc-106201614032501@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

On Wednesday 27 August 2003 22:25, Derek wrote:
> Hi All,
>
>
> I hope this is the correct place to ask about this, but can someone give
> me an example of blocking a certain application via the layer 7 patch
> and iproute/iptables?
>
> For more of a specific example, I'm trying to block certain instant
> messaging clients on my network, and I have yet to find a way to do it
> (using mark or otherwise).
>
> Any help would be greatly appreciated!
Iptables can look at the packet contents.  If you know how the clients are 
negotiating with the servers, you can block these packets.  Or try to find 
out the ports and ip addresses and block these.

Stef

-- 

stef.coene@docum.org
 "Using Linux as bandwidth manager"
     http://www.docum.org/
     #lartc @ irc.oftc.net

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/