If you are looking to use tc take a look at the following site. Although I haven't tried it myself it looks promising. http://l7-filter.sourceforge.net/ -----Original Message----- From: Esteban Ribicic [mailto:eribicic@xxxxxxxxxxxxxxx] Sent: Thursday, May 22, 2003 7:08 AM To: jaws Cc: kisero@xxxxxxxxxxxxxxxxxx; Gladson George; netfilter@xxxxxxxxxxxxxxxxxxx Subject: RE: how to filter kazaa so i could use this on the prerouting table and marks paqeuts so then applyen them a tc filter? in that case, you've save my life! On Thu, 2003-05-22 at 07:10, jaws wrote: > but filtering port 1214 will not solve the problem coz kazza can use other > ports. > > At 12:58 PM 5/21/2003 -0300, eribicic@xxxxxxxxxxxx wrote: > >isnt it easyer to filter ports 1214? > > > > > The following rule has worked for me. > > > > > > http://www.securityfocus.com/infocus/1531 > > > > > > > > > $IPTABLES -A FORWARD -p tcp -m string --string X-Kazaa-Username: -j REJECT > > > --reject-with tcp-reset > > > > > > $IPTABLES -A FORWARD -p tcp -m string --string X-Kazaa-Network: -j REJECT > > > --reject-with tcp-reset > > > > > > $IPTABLES -A FORWARD -p tcp -m string --string X-Kazaa-IP: -j REJECT > > > --reject-with tcp-reset > > > > > > $IPTABLES -A FORWARD -p tcp -m string --string X-Kazaa-SupernodeIP: -j -j > > > REJECT --reject-with tcp-reset > > > > > > -----Original Message----- > > > From: tracker [mailto:jaws@xxxxxxxxxxx] > > > Sent: Wednesday, May 21, 2003 3:20 PM > > > To: netfilter@xxxxxxxxxxxxxxxxxxx > > > Subject: how to filter kazaa > > > > > > Hi all, > > > > > > Im new to this list and iptables. I would like to know how to filter kazaa. > > > > > > Thanks. > > > > > > Jaws > > > > > > > > > > >-- > >Slds. > > > > > -- Esteban Ribicic <eribicic@xxxxxxxxxxxxxxx> UOL-Sinectis - Network Operation Center Florida 537 6to - Capital Federal - Argentina (tel directo) 54+011-4321-9107