I have tried DROP policy as well but not succeeded. One thing that I should mentioned that my Internet setup is upload through normal DDP and download through Satellite Downlink and both are on separate systems. That is one linux based PC where I am running IPTABLES used to upload request and the 2nd PC which is a Satellite Receiver used for download. So my upload request goes to one system and download request received from another system. Is that help U to find out that particular problem of blocking MSN/Yahoo chat using IPTABLES. Regards, Asim ----- Original Message ----- From: "David Busby" <busby@xxxxxxxx> To: "Asim Ejaz Butt" <asim.butt@xxxxxxxxxxxxxxxxxxxxxx>; <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Wednesday, June 25, 2003 11:49 PM Subject: Re: MSN and Yahoo Block through IPTABLES > Can you set policy to DROP then only allow what you need? > > /B > > > ----- Original Message ----- > From: "Asim Ejaz Butt" <asim.butt@xxxxxxxxxxxxxxxxxxxxxx> > To: <netfilter@xxxxxxxxxxxxxxxxxxx> > Sent: Wednesday, June 25, 2003 03:23 > Subject: MSN and Yahoo Block through IPTABLES > > > > Hello Gurus, > > > > I am trying to block MSN and Yahoo Instant Messengers with my LAN using > > IPTABLES. Following commands are used to block them but unsuccessful. > > > > /sbin/iptables -A FORWARD -p tcp -s 192.168.5.85 --dport 1863 -j REJECT > > /sbin/iptables -A FORWARD -p tcp -s 192.168.5.85 -d 64.4.0.0/18 -j REJECT > > > > /sbin/iptables -A FORWARD -d cs.yahoo.com -j REJECT > > /sbin/iptables -A FORWARD -d scsa.yahoo.com -j REJECT > > > > Anyone help in blocking them through IPTABLES. > > > > Asim Ejaz Butt > > asim.butt@xxxxxxxxxxxxxxxxxxxxxx > >
