That's why the rules below match the protocol negotiations because it'll track the data on any port no matter which one it uses... just don't send an email with this data ... ha ha ha.. ;) -----Original Message----- From: jaws [mailto:jaws@xxxxxxxxxxx] Sent: Thursday, May 22, 2003 8:11 PM To: kisero@xxxxxxxxxxxxxxxxxx; georgc@xxxxxxxxxxxxxxx; netfilter@xxxxxxxxxxxxxxxxxxx Subject: RE: how to filter kazaa but filtering port 1214 will not solve the problem coz kazza can use other ports. At 12:58 PM 5/21/2003 -0300, eribicic@xxxxxxxxxxxx wrote: >isnt it easyer to filter ports 1214? > > > The following rule has worked for me. > > > > http://www.securityfocus.com/infocus/1531 > > > > > > $IPTABLES -A FORWARD -p tcp -m string --string X-Kazaa-Username: -j REJECT > > --reject-with tcp-reset > > > > $IPTABLES -A FORWARD -p tcp -m string --string X-Kazaa-Network: -j REJECT > > --reject-with tcp-reset > > > > $IPTABLES -A FORWARD -p tcp -m string --string X-Kazaa-IP: -j REJECT > > --reject-with tcp-reset > > > > $IPTABLES -A FORWARD -p tcp -m string --string X-Kazaa-SupernodeIP: -j -j > > REJECT --reject-with tcp-reset > > > > -----Original Message----- > > From: tracker [mailto:jaws@xxxxxxxxxxx] > > Sent: Wednesday, May 21, 2003 3:20 PM > > To: netfilter@xxxxxxxxxxxxxxxxxxx > > Subject: how to filter kazaa > > > > Hi all, > > > > Im new to this list and iptables. I would like to know how to filter kazaa. > > > > Thanks. > > > > Jaws > > > > > > >-- >Slds.
