Block Kazaa from the internal network

Block Kazaa from the internal network

[Lohan Spies]

[-- Attachment #1: Type: text/plain, Size: 714 bytes --]

Hi All,
 
How can i block ALL Kazaa connections from inside my network?
 
Thanks,
 
Lohan Spies 
Systems Administrator CSA / DBA / MCP
IQ Business  <http://www.iqgroup.net/> Group
Tel: +27 12 521 7309
Fax: +27 12 541 3441
Cell: +27 83 258 2698
l.spies@petzetakis-africa.co.za 


 

 


CONFIDENTIALITY CAUTION: If you have received this communication in error, please note that it is intended for the addressee only, is private and confidential and dissemination or copying prohibited. Please notify us immediately by e-mail and return the original message. We cannot assure that the integrity of this communication has been maintained nor that it is free of errors, virus, interception or interference. Thank you

[-- Attachment #2: Type: text/html, Size: 3877 bytes --]

Re: Block Kazaa from the internal network

[Chris Lowth]

[-- Attachment #1: Type: text/plain, Size: 954 bytes --]

Messagehttp://p2pwall.sourceforge.net
  ----- Original Message ----- 
  From: Lohan Spies 
  To: netfilter@lists.netfilter.org 
  Sent: Thursday, October 16, 2003 10:42 AM
  Subject: Block Kazaa from the internal network


  Hi All,

  How can i block ALL Kazaa connections from inside my network?

  Thanks,

  Lohan Spies 
  Systems Administrator CSA / DBA / MCP
  IQ Business Group
  Tel: +27 12 521 7309
  Fax: +27 12 541 3441
  Cell: +27 83 258 2698
  l.spies@petzetakis-africa.co.za 

   



  CONFIDENTIALITY CAUTION: If you have received this communication in error, please note that it is intended for the addressee only, is private and confidential and dissemination or copying prohibited. Please notify us immediately by e-mail and return the original message. We cannot assure that the integrity of this communication has been maintained nor that it is free of errors, virus, interception or interference. Thank you 

[-- Attachment #2: Type: text/html, Size: 4295 bytes --]

Re: Block Kazaa from the internal network

[Josh Berry]

You could use a combination of Snort-Inline:
http://sourceforge.net/projects/snort-inline/

and the rules that Snort has for Kazaa and other P2P stuff.

And you could also use P2Pwall which is a P2P blocking module for
IPTables: http://www.lowth.com/p2pwall/


> Messagehttp://p2pwall.sourceforge.net
>   ----- Original Message -----
>   From: Lohan Spies
>   To: netfilter@lists.netfilter.org
>   Sent: Thursday, October 16, 2003 10:42 AM
>   Subject: Block Kazaa from the internal network
>
>
>   Hi All,
>
>   How can i block ALL Kazaa connections from inside my network?
>
>   Thanks,
>
>   Lohan Spies
>   Systems Administrator CSA / DBA / MCP
>   IQ Business Group
>   Tel: +27 12 521 7309
>   Fax: +27 12 541 3441
>   Cell: +27 83 258 2698
>   l.spies@petzetakis-africa.co.za
>
>
>
>
>
>   CONFIDENTIALITY CAUTION: If you have received this communication in
> error, please note that it is intended for the addressee only, is
> private and confidential and dissemination or copying prohibited. Please
> notify us immediately by e-mail and return the original message. We
> cannot assure that the integrity of this communication has been
> maintained nor that it is free of errors, virus, interception or
> interference. Thank you


Thanks,
Josh Berry, CTO
LinkNet-Solutions
469-831-8543
josh.berry@linknet-solutions.com

Re: Block Kazaa from the internal network

[Herman]

Here is something from a previous post:

On Sun, 2003-10-12 at 11:35, Piotr P. wrote:
>
> Does any body know how to
> block traffic with this word using iptables?

iptables -A FORWARD -p udp -d 0/0 --dport 1024:65535 -m string --string
"KaZaA" -j DROP

should do the trick.

HTH,
C

Cheers,

Herman


On Thursday 16 October 2003 7:33 am, Josh Berry wrote:
   You could use a combination of Snort-Inline:
   http://sourceforge.net/projects/snort-inline/

   and the rules that Snort has for Kazaa and other P2P stuff.

   And you could also use P2Pwall which is a P2P blocking module for
   IPTables: http://www.lowth.com/p2pwall/

   > Messagehttp://p2pwall.sourceforge.net
   >   ----- Original Message -----
   >   From: Lohan Spies
   >   To: netfilter@lists.netfilter.org
   >   Sent: Thursday, October 16, 2003 10:42 AM
   >   Subject: Block Kazaa from the internal network
   >
   >
   >   Hi All,
   >
   >   How can i block ALL Kazaa connections from inside my network?
   >
   >   Thanks,
   >
   >   Lohan Spies
   >   Systems Administrator CSA / DBA / MCP
   >   IQ Business Group
   >   Tel: +27 12 521 7309
   >   Fax: +27 12 541 3441
   >   Cell: +27 83 258 2698
   >   l.spies@petzetakis-africa.co.za
   >
   >
   >
   >
   >
   >   CONFIDENTIALITY CAUTION: If you have received this communication in
   > error, please note that it is intended for the addressee only, is
   > private and confidential and dissemination or copying prohibited. Please
   > notify us immediately by e-mail and return the original message. We
   > cannot assure that the integrity of this communication has been
   > maintained nor that it is free of errors, virus, interception or
   > interference. Thank you

   Thanks,
   Josh Berry, CTO
   LinkNet-Solutions
   469-831-8543
   josh.berry@linknet-solutions.com

RE: Block Kazaa from the internal network

[George Vieira]

> iptables -A FORWARD -p udp -d 0/0 --dport 1024:65535 -m 
> string --string
> "KaZaA" -j DROP
How about just blocking all UDP and allow only those needed?? saves doing string matches on alot of ports..
I thought Kazaa used some TCP as well..



PS: Never seems to amaze me how many have Kazaa working and want to switch it off and then there's the other half who want Kazaa and can't get it working.... Beats me.. he he.. well actually I know why, but............



Thanks,
____________________________________________
George Vieira
Systems Manager
georgev@citadelcomputer.com.au

Citadel Computer Systems Pty Ltd
http://www.citadelcomputer.com.au