> iptables -A FORWARD -p udp -d 0/0 --dport 1024:65535 -m > string --string > "KaZaA" -j DROP How about just blocking all UDP and allow only those needed?? saves doing string matches on alot of ports.. I thought Kazaa used some TCP as well.. PS: Never seems to amaze me how many have Kazaa working and want to switch it off and then there's the other half who want Kazaa and can't get it working.... Beats me.. he he.. well actually I know why, but............ Thanks, ____________________________________________ George Vieira Systems Manager georgev@xxxxxxxxxxxxxxxxxxxxxx Citadel Computer Systems Pty Ltd http://www.citadelcomputer.com.au
