On Thu, 2003-06-26 at 04:03, Liber Chrétien wrote: > Hello, > I've been looking for some information but couldn't find, so here it goes, I'm asking > to the list : (excuse my technical english if I'm not clear enough) > > I've a LAN at home with mdk as server and win and mdk on the clients > > My question is : is there a way to block certain applications, such as specific > softwares (office suite for example), to access internet with iptables? > How to identify the packets emitted from such applications and block them ? > > Thanks > > Bruno The only way to accomplish this is blocking by IP and ports. If there is a certain type of connection you want to block you can perhaps accomplish it by port. If you want to run an iptables firewall and filter out explicitly traffic from a certain windows application that communicates on 'standard' ports that you otherwise want open, you're out of luck. That would be better handled on the Win box itself with something like ZoneAlarm that lets you grant/deny connection privileges per application. j
