The task of blocking certain sites is definitly suited for "squid" as jason suggest and pls don't *insists* :) you can block messengers via iptables if you know which ports they are using for example ## blocking MSN iptables -A FORWARD -p tcp --dport 1863 -j DROP ##block yahoo iptables -A FORWARD -p tcp --dport 5050 -j DROP regards On Fri, 11 Feb 2005 05:58:05 +0530, spdesai@xxxxxxxxx <spdesai@xxxxxxxxx> wrote: > I want to use Netfilter only instead of squid....pl. give me solution through > netfilter > > Quoting Eric Leblond <eleblond@xxxxxx>: > > > use a proxy (squid trasnparent if you want) ... netfilter can not > > cleanly filter at level. > > > > On Fri, 2005-02-11 at 01:04 +0530, spdesai@xxxxxxxxx wrote: > > > Hi > > > > > > I have one linux machine with two NIC cards. One is connected to internet > > and > > > one is private PC. Below is my IP configuration > > > > > > I have enable ip_forward to 1 in linux machine as well as donw masqared in > > > > > linux. > > > > > > I can browse the internet as well from window machine. > > > > > > Now I want to allow/restricted my window machine to access/deny particular > > > > > site/block/messanger ... > > > > > > i have tried with FORWARD chain but..it restricted all HTTP traffic which i > > > > > dont want. > > > > > > So pl. give me the solution. > > > > > > Thanks in advance > > > > > > Suhag > > > > > > ------------------------------------------------- > > > This mail sent through IMP: http://horde.org/imp/ > > > > > > > > > > > > ------------------------------------------------- > This mail sent through IMP: http://horde.org/imp/ > > -- (after bouncing head on desk for days trying to get mine working, I'll make your life a little easier)
