On Tue, 2003-08-19 at 17:33, Robert Davies wrote:
On Tuesday 19 Aug 2003 15:29, James Oakley wrote:
Aha, you just reminded me of the string matching module. A bit of Googling returned this:
iptables -m string --string "X-Kazaa-Username:" -j DROP iptables -m string --string "X-Kazaa-Network:" -j DROP iptables -m string --string "X-Kazaa-IP:" -j DROP iptables -m string --string "X-Kazaa-SupernodeIP:" -j DROP
How efficient is that, does it hit throughput badly? Is the firewall looking inside every packet, scanning for those 4 strings? Would it take out other packets, like your email which happened to contain the strings in them?
Depends which chain you add it to.
Rob -- -- Raymond Leach
Network Support Specialist http://www.knowledgefactory.co.za "lynx -source http://www.rchq.co.za/raymondl.asc | gpg --import" Key fingerprint = 7209 A695 9EE0 E971 A9AD 00EE 8757 EE47 F06F FB28 --