Can you set policy to DROP then only allow what you need? /B ----- Original Message ----- From: "Asim Ejaz Butt" <asim.butt@xxxxxxxxxxxxxxxxxxxxxx> To: <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Wednesday, June 25, 2003 03:23 Subject: MSN and Yahoo Block through IPTABLES > Hello Gurus, > > I am trying to block MSN and Yahoo Instant Messengers with my LAN using > IPTABLES. Following commands are used to block them but unsuccessful. > > /sbin/iptables -A FORWARD -p tcp -s 192.168.5.85 --dport 1863 -j REJECT > /sbin/iptables -A FORWARD -p tcp -s 192.168.5.85 -d 64.4.0.0/18 -j REJECT > > /sbin/iptables -A FORWARD -d cs.yahoo.com -j REJECT > /sbin/iptables -A FORWARD -d scsa.yahoo.com -j REJECT > > Anyone help in blocking them through IPTABLES. > > Asim Ejaz Butt > asim.butt@xxxxxxxxxxxxxxxxxxxxxx >
