* block downloads on file type
@ 2003-04-20 10:48 HEMANT BAANDAL
2003-04-23 8:25 ` NetSnake
0 siblings, 1 reply; 6+ messages in thread
From: HEMANT BAANDAL @ 2003-04-20 10:48 UTC (permalink / raw)
To: netfilter
hi guys,
is there anyway in which we can block a certain file
from being downloaded ? i mean i need to block mp3
downloads, is there anyway the linux box can
understand the file type while downloading it ...
please put some light on it even if u have the
slightest idea, it might lead me to some result
thanks a lot
hemant
=====
Hemant
GNS Team
Mumbai.
Pace My Passion . . . . ! ! !
__________________________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo
http://search.yahoo.com
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: block downloads on file type
@ 2003-04-23 1:00 Andrej Ricnik
0 siblings, 0 replies; 6+ messages in thread
From: Andrej Ricnik @ 2003-04-23 1:00 UTC (permalink / raw)
To: netfilter
I don't think this is a task for netfilter, you might
want to look at http://dansguardian.org/?page=introduction
Cheers,
Tink
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GCM/IT/O d-(++)@ a C+(+++)@ UL++>+++ P+>+++ L++ E+@ W+@ N+ o? K? w---@(+)
O+++(+)@ M-@ V? PS+ PE- Y+ PGP++ t- 5- X- R-(*) tv-@ b+ DI++ D-- G++ !e*
h--- r++ z?
------END GEEK CODE BLOCK------
_________________________________________________________________
Tired of spam? Get advanced junk mail protection with MSN 8.
http://join.msn.com/?page=features/junkmail
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: block downloads on file type
@ 2003-04-23 1:02 Andrej Ricnik
0 siblings, 0 replies; 6+ messages in thread
From: Andrej Ricnik @ 2003-04-23 1:02 UTC (permalink / raw)
To: netfilter
I don't think this is a task for netfilter, you might
want to look at http://dansguardian.org/?page=introduction
Cheers,
Tink
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GCM/IT/O d-(++)@ a C+(+++)@ UL++>+++ P+>+++ L++ E+@ W+@ N+ o? K? w---@(+)
O+++(+)@ M-@ V? PS+ PE- Y+ PGP++ t- 5- X- R-(*) tv-@ b+ DI++ D-- G++ !e*
h--- r++ z?
------END GEEK CODE BLOCK------
_________________________________________________________________
The new MSN 8: smart spam protection and 2 months FREE*
http://join.msn.com/?page=features/junkmail
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: block downloads on file type
2003-04-20 10:48 block downloads on file type HEMANT BAANDAL
@ 2003-04-23 8:25 ` NetSnake
0 siblings, 0 replies; 6+ messages in thread
From: NetSnake @ 2003-04-23 8:25 UTC (permalink / raw)
To: netfilter
May be you can use iptables string match patch, or use Squid + iptables.
>hi guys,
> is there anyway in which we can block a certain file
>from being downloaded ? i mean i need to block mp3
>downloads, is there anyway the linux box can
>understand the file type while downloading it ...
>
>please put some light on it even if u have the
>slightest idea, it might lead me to some result
>
>thanks a lot
>hemant
>
>=====
>Hemant
>GNS Team
>Mumbai.
>
>Pace My Passion . . . . ! ! !
>
>__________________________________________________
>Do you Yahoo!?
>The New Yahoo! Search - Faster. Easier. Bingo
>http://search.yahoo.com
>
>
>
>
^ permalink raw reply [flat|nested] 6+ messages in thread
* RE: block downloads on file type
@ 2003-04-23 22:12 Steele, David S.
0 siblings, 0 replies; 6+ messages in thread
From: Steele, David S. @ 2003-04-23 22:12 UTC (permalink / raw)
To: netfilter; +Cc: 'NetSnake'
What if I want to prioritize/shape traffic based on file type? Is there some
way to mark subsequent packets in the same TCP connection?
-----Original Message-----
From: NetSnake [mailto:netsnake@963.net]
Sent: Wednesday, April 23, 2003 4:26 AM
To: netfilter@lists.samba.org
Subject: Re: block downloads on file type
May be you can use iptables string match patch, or use Squid + iptables.
>hi guys,
> is there anyway in which we can block a certain file
>from being downloaded ? i mean i need to block mp3
>downloads, is there anyway the linux box can
>understand the file type while downloading it ...
>
>please put some light on it even if u have the
>slightest idea, it might lead me to some result
>
>thanks a lot
>hemant
^ permalink raw reply [flat|nested] 6+ messages in thread
* RE: block downloads on file type
@ 2003-04-23 23:50 per jarevez
0 siblings, 0 replies; 6+ messages in thread
From: per jarevez @ 2003-04-23 23:50 UTC (permalink / raw)
To: daves, netfilter; +Cc: netsnake
Hi,
You can use Squid Cache + [content filtering ] + Apache mod_proxy +
RewriteMap in mod_rewrite + your own script to process requests passed to it
from RewriteMap + Netfilter + IPRoute2 Traffic Control (TC tool).
Or just [content filtering] + Apache mod_cache + mod_proxy + mod_rewrite +
Netfilter + TC Tool.
You can also use Snort + [ snortSnaf, etc. ] + Netfilter + TC tool.
Or you can use hogwash + TC tool.
I don't know if you can do it just with Squid + IPTables as he mentioned,
but I'm sure you eventually gonna want to use a traffic shaper (TC tool)
somewhere.
Just to tell ya that if you are doing it to slow down those downloads, might
as well post up a user policy that they are responsible for their own
bandwidth usage and just do IPRoute2 traffic shaper and a suitable Qdisc to
fair share available bandwidth among people on your network. A lot less
hassle and less bugs / security problems.
Good luck.
_________________________________________________________________
Help STOP SPAM with the new MSN 8 and get 2 months FREE*
http://join.msn.com/?page=features/junkmail
^ permalink raw reply [flat|nested] 6+ messages in thread
end of thread, other threads:[~2003-04-23 23:50 UTC | newest]
Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-04-20 10:48 block downloads on file type HEMANT BAANDAL
2003-04-23 8:25 ` NetSnake
-- strict thread matches above, loose matches on Subject: below --
2003-04-23 1:00 Andrej Ricnik
2003-04-23 1:02 Andrej Ricnik
2003-04-23 22:12 Steele, David S.
2003-04-23 23:50 per jarevez
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox