On Thursday 29 April 2004 00:34, Harry wrote: > Hi All, > Many thanks Mr.Antony, Alexix and the rest who helped me with the rule, the > DNAT rule works great!! Was just going thru a website > http://www.antiproxy.com > wow...they have loads of ports thru which proxies can be bypassed?So does > that mean I have to write rules for each of the relavent ports?at the > moment I have just done for port 3128, and blocked the site antiproxy.com > thru squid. > Suggestions are welcome... > Regards > Harry Maybe you should change Policy for FORWARD chain into Default DENY. After that, you can add your allowed connection port list to be allowed. Like port 80,25,53,110,8080,etc.. - Rio.Martin -
