19 Aug
2003
19 Aug
'03
15:33
On Tuesday 19 Aug 2003 15:29, James Oakley wrote:
Aha, you just reminded me of the string matching module. A bit of Googling returned this:
iptables -m string --string "X-Kazaa-Username:" -j DROP iptables -m string --string "X-Kazaa-Network:" -j DROP iptables -m string --string "X-Kazaa-IP:" -j DROP iptables -m string --string "X-Kazaa-SupernodeIP:" -j DROP
How efficient is that, does it hit throughput badly? Is the firewall looking inside every packet, scanning for those 4 strings? Would it take out other packets, like your email which happened to contain the strings in them? Rob