AW: [suse-security] How to block Yahoo-Messenger in SuSEfirewall2
Hi,
In URL http://209.249.46.222/linux/como-iptables-servicios.php have the follow rules,
# Yahoo! Messenger /sbin/iptables -A FORWARD -p TCP --dport 5000:5010 -j REJECT /sbin/iptables -A FORWARD -d cs.yahoo.com -j REJECT /sbin/iptables -A FORWARD -b scsa.yahoo.com -j REJECT
Thanks for the Hint! But how do I implement this in SuSEfirewall2? bye Mike Gesendet über Mailserver: begros.de! Trotz sorgfältiger Virenprüfung können wir für eventuelle Schäden, die durch nicht erkannte Computerviren entstehen, keine Haftung übernehmen.
sorry, but I don't know, I work with script, By Lindomar, On Tue, 12 Nov 2002, Wanning, Mike wrote:
Hi,
In URL http://209.249.46.222/linux/como-iptables-servicios.php have the follow rules,
# Yahoo! Messenger /sbin/iptables -A FORWARD -p TCP --dport 5000:5010 -j REJECT /sbin/iptables -A FORWARD -d cs.yahoo.com -j REJECT /sbin/iptables -A FORWARD -b scsa.yahoo.com -j REJECT
Thanks for the Hint! But how do I implement this in SuSEfirewall2?
bye
Mike
Gesendet �ber Mailserver: begros.de! Trotz sorgf�ltiger Virenpr�fung k�nnen wir f�r eventuelle Sch�den, die durch nicht erkannte Computerviren entstehen, keine Haftung �bernehmen.
Hi,
You might be able to try this
FW_PROTECT_FROM_INTERNAL="yes"
and
FW_SERVICES_INT_TCP="ports seperated by space"
FW_SERVICES_INT_UDP="ports seperated by space"
FW_SERVICES_INT_IP="ports seperated by space"
and only specify the ports that should be open...
all other packets to other ports will be dropped.
e.g. :
FW_SERVICES_INT_TCP="22 80 3128 8000:8100"
(this is just an example)
22 ssh
80 web
3128 proxy
8000:8100 range of ports fo a particular service.
_____________________________________________
Make money while you work !!! No surfing required!
http://www.degoo.com/index.php?refid=mersco
This is for real !!!
----- Original Message -----
From: "Lindomar C. dos Santos"
Hi,
In URL http://209.249.46.222/linux/como-iptables-servicios.php have the follow rules,
# Yahoo! Messenger /sbin/iptables -A FORWARD -p TCP --dport 5000:5010 -j REJECT /sbin/iptables -A FORWARD -d cs.yahoo.com -j REJECT /sbin/iptables -A FORWARD -b scsa.yahoo.com -j REJECT
Thanks for the Hint! But how do I implement this in SuSEfirewall2?
bye
Mike
Gesendet über Mailserver: begros.de! Trotz sorgfältiger Virenprüfung können wir für eventuelle Schäden, die durch nicht erkannte Computerviren entstehen, keine Haftung übernehmen.
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
* Wanning, Mike;
Hi,
In URL http://209.249.46.222/linux/como-iptables-servicios.php have the follow rules,
# Yahoo! Messenger /sbin/iptables -A FORWARD -p TCP --dport 5000:5010 -j REJECT /sbin/iptables -A FORWARD -d cs.yahoo.com -j REJECT /sbin/iptables -A FORWARD -b scsa.yahoo.com -j REJECT
Thanks for the Hint! But how do I implement this in SuSEfirewall2?
I am not sure if it will work but you may try it FW_MASQ_NETS="192.168.1.0/24,0/0,tcp,!5000:5100 " Basically you are saying for your Masquearding net (ie 192.168.1.0/24) forward the the TCP port requests *except* those to 5000:5100 if you need to forward UDP requests then add 192.168.1.0/24,0/0,udp,1024:65535 HTH -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer http://dinamizm.ath.cx
participants (4)
-
Chris FitzGerald -
Lindomar C. dos Santos -
Togan Muftuoglu -
Wanning, Mike