Block everything and allow only port 5190/4000 (don't know if groupware is the same ports or not).. Obviously if your allowing everything then expect more problems when people use IRC or Direct Connect to send to others.. Thanks, ____________________________________________ George Vieira Systems Manager georgev@xxxxxxxxxxxxxxxxxxxxxx Citadel Computer Systems Pty Ltd http://www.citadelcomputer.com.au Phone : +61 2 9955 2644 HelpDesk: +61 2 9955 2698 -----Original Message----- From: Leonardo Rodrigues Magalhães [mailto:leolistas@xxxxxxxxxxxxxx] Sent: Friday, August 08, 2003 7:59 AM To: netfilter ML Subject: ICQ file transfers Hello Guys, I have two LANs interconnected with FreeSWAN IPSec tunnel. It's working fine. Gateway in both sides is a linux box running iptables. We're running ICQ Groupware Server and ICQ Groupware clients for instant messages. I need, somehow, block ICQ File transfers, but I cannot block ICQ messages. ICQ Client does not allow this kind of config. I was thinking on some string match to block the initial ICQ File transfer request. Question is: do anybody here has the string I'm looking for ? Has anyone experienced a similar problem ? Sincerily, Leonardo Rodrigues
