Mailinglist Archive: opensuse-security (274 mails)

< Previous Next >
Re: [suse-security] Blocking Kazaa and other P2P communication tools.
  • From: Robert Davies <rob_davies@xxxxxxxxxxxx>
  • Date: Tue, 19 Aug 2003 16:33:58 +0100
  • Message-id: <200308191633.58189.rob_davies@xxxxxxxxxxxx>
On Tuesday 19 Aug 2003 15:29, James Oakley wrote:

> Aha, you just reminded me of the string matching module. A bit of Googling
> returned this:
>
> iptables -m string --string "X-Kazaa-Username:" -j DROP
> iptables -m string --string "X-Kazaa-Network:" -j DROP
> iptables -m string --string "X-Kazaa-IP:" -j DROP
> iptables -m string --string "X-Kazaa-SupernodeIP:" -j DROP

How efficient is that, does it hit throughput badly? Is the firewall looking
inside every packet, scanning for those 4 strings? Would it take out other
packets, like your email which happened to contain the strings in them?

Rob


< Previous Next >
Follow Ups