* filter p2p
@ 2003-06-16 1:16 gbj
2003-06-16 21:11 ` David Busby
0 siblings, 1 reply; 2+ messages in thread
From: gbj @ 2003-06-16 1:16 UTC (permalink / raw)
To: netfilter, netfilter
hello everyone,I have a lan with a gateway iptables firewall,and I don't want the user on the lan use P2P software like e-donkey ,because I think it's will led to some administration proplem.but I don't know how to setup iptables rules to archieves this goal,does anybody has the same experience?
sword
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: filter p2p
2003-06-16 1:16 filter p2p gbj
@ 2003-06-16 21:11 ` David Busby
0 siblings, 0 replies; 2+ messages in thread
From: David Busby @ 2003-06-16 21:11 UTC (permalink / raw)
To: gbj, netfilter
I'd set my iptables to something like:
# Drop _all_ packets
iptables -t filter -P FORWARD DROP
# Allow http
iptables -t filter -A FORWARD -p tcp -m tcp --dport 80 -j ACCEPT
# Many more rules here to allow all the other s41t.
----- Original Message -----
From: "gbj" <gbj@glc.cn.net>
To: <netfilter@lists.netfilter.org>
Sent: Sunday, June 15, 2003 18:16
Subject: filter p2p
> hello everyone,I have a lan with a gateway iptables firewall,and I don't
want the user on the lan use P2P software like e-donkey ,because I think
it's will led to some administration proplem.but I don't know how to setup
iptables rules to archieves this goal,does anybody has the same experience?
>
>
>
>
>
> sword
>
>
>
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2003-06-16 21:11 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-06-16 1:16 filter p2p gbj
2003-06-16 21:11 ` David Busby
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox