Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.


Welcome to AstaHost - Dear Guest , Please Register here to get Your own website. - Ask a Question / Express Opinion / Reply w/o Sign-Up!

Toggle shoutbox Shoutbox

@ agyat	:	(23 May 2013 - 01:23 AM) Wow! Mr. Sb Back Home.
@ OpaQue	:	(23 May 2013 - 12:44 AM) Ting
@ OpaQue	:	(24 April 2013 - 02:44 PM) I guess, Time to run Mycent script.
@ OpaQue	:	(24 April 2013 - 02:43 PM) wow.. not much spam. except habatt posting lot of links..
@ yordan	:	(23 April 2013 - 01:04 PM) You're welcome, agyat. Nice to have been helpful. Second lesson: try full words, "you" instead of "EW".
@ agyat	:	(23 April 2013 - 05:03 AM) @YORDAN: tHANK EW FOR YOUR FIRST LESSON.
@ yordan	:	(22 April 2013 - 09:43 PM) @agyat : "why don't you help me", or "please help me", or "please teach us"
@ yordan	:	(22 April 2013 - 09:42 PM) welcome back, velma
@ velma	:	(22 April 2013 - 07:51 AM) yawns Good to be back, wonder what is going on here
@ agyat	:	(22 April 2013 - 03:50 AM) Oh! so, why don't help me learn english..
@ yordan	:	(21 April 2013 - 08:38 PM) The goal mentioned by shiu : "learning english, learning computer"
@ agyat	:	(21 April 2013 - 06:31 PM) WHAT GOAL?
@ yordan	:	(20 April 2013 - 10:39 AM) yes, that's our goal. simultaneouly learning English and teaching/learning computer using.
@ shiyu	:	(20 April 2013 - 07:30 AM) learning english,learning computer
@ yordan	:	(19 April 2013 - 01:11 PM) Oh, I see, it's just a trick in order to force people looking at your texte. Somehow smart, maybe.
@ agyat	:	(19 April 2013 - 02:54 AM) And of course I know it is not SEO friendly.
@ agyat	:	(19 April 2013 - 02:52 AM) There may be two possible answers for that .... 1) Shout was posted using mobile keypad. 2) To force people read content carefully and/or with more concentration.
@ agyat	:	(19 April 2013 - 02:49 AM) There may be two possible answers for that ....
@ yordan	:	(18 April 2013 - 09:35 PM) however, why this mixing of capital letters in the middle of your text?
@ agyat	:	(18 April 2013 - 11:10 AM) false feelings.

Replying to Question About Blocking Msn In Linux

Post Options

Enable emoticons?

Enter Your Name

Security Check *

[quote name="jedipi" post="45623" timestamp="1122117640"] thanks moonwitch for adding the console tag. I did try to add it before I click post button. but it did look good in preveiw (even now). --- 1 line statement become 2 lines. thats why I did do that. and thanks for the suggestion... however, the problem still remain. MSN still can online. any other ideas???[/quote] [quote name="jedipi" post="45623" timestamp="1122117640"] thanks moonwitch for adding the console tag. I did try to add it before I click post button. but it did look good in preveiw (even now). --- 1 line statement become 2 lines. thats why I did do that. and thanks for the suggestion... however, the problem still remain. MSN still can online. any other ideas???[/quote]

or Cancel

Topic Summary

madcrow

Posted 27 July 2005 - 01:51 PM

I see. You're one of those evil bosses who wants to control everything your employees do and prevent them from using the internet for anything other than stock quotes and stuff.

Notice from qwijibow:

Your first post in this thread was tolerated, but this is just pointless spam/flaimbait.
please keep your posts relevant to the topic.

Trekkie101

Posted 23 July 2005 - 08:05 PM

4. Not true, the MSN protocal is pretty good if you have a bot, very easy to work with.

jipman

Posted 23 July 2005 - 05:08 PM

Why would you ever need to block MSN? Do you just not want Windows users to be able to connect to your server or something?

1. Did you ever think about that every single message goes through the m$ servers? And that privacy is a rare thing there?
2. Ever thought that if at work, everyone's nudging and msg'ing each other, would there be any work done?
3. You are confused, this has nothing to do with windows/linux, it's the PROTOCOL

[wha?]
4. MSN is the lamest protocol ever and GAIM ownzz it's sorry ass?
[/wha?]

madcrow

Posted 23 July 2005 - 04:14 PM

Why would you ever need to block MSN? Do you just not want Windows users to be able to connect to your server or something?

jipman

Posted 23 July 2005 - 12:57 PM

You could try to block all access from and to port 1863, that is the default port (maybe there are more, like the ones in your start-post

, but leave the 80 port open ).

Also, you also might need to ban somesites with online-messenger stuff, like

http://webmessenger.msn.com
http://www.e-messenger.net

jedipi

Posted 23 July 2005 - 11:20 AM

thanks moonwitch for adding the console tag.
I did try to add it before I click post button.
but it did look good in preveiw (even now). --- 1 line statement become 2 lines.
thats why I did do that.

and thanks for the suggestion...
however, the problem still remain.
MSN still can online.
any other ideas???

qwijibow

Posted 23 July 2005 - 09:55 AM

Im not 100%, but dont all the msn server use the same port (or same range of ports)
you may have more luck blocking tcp packets in state NEW to msn server ports.

iptables -A FORWARD -p tcp --dport <msn_server_port_range> -m state --state NEW -j DROP

terminal@console

iptables -A FORWARD -d gateway.messenger.hotmail.com -j DROP

iptables -A FORWARD --protocol tcp --dport 1863 -j REJECT --reject-with tcp-reset

for i in `cat /etc/msnserverlist`;do /sbin/iptables -A FORWARD -d $i -j DROP;done

for i in `cat /etc/msnserverlist`;do /sbin/iptables -A FORWARD -s $i -j DROP;done

msnserverlist:

207.46.4.55

207.46.4.161

207.46.0.74

207.46.4.40

207.46.6.101

207.46.4.93

207.46.4.38

207.46.0.48

207.46.0.144

207.46.4.59

207.46.6.29

207.46.6.176

207.46.0.22

207.46.0.54

65.54.239.20

207.46.0.92

207.46.0.68

207.46.0.46

207.46.6.186

207.46.2.161

207.46.0.81

207.46.6.201

65.54.239.140

207.46.0.96

61.129.45.63

207.46.0.57

207.46.0.75

207.46.0.83

207.46.0.151

207.46.0.147



iptables -A FORWARD -d 64.4.12.200 -p udp --dport 7001 -j DROP

iptables -A FORWARD -d 64.4.12.201 -p udp --dport 7001 -j DROP

iptables -A FORWARD -d 65.54.226.247 -p udp --dport 443 -j DROP

iptables -A FORWARD -d 207.46.104.20 -p udp --dport 1863 -j DROP

iptables -A FORWARD -d 207.46.106.99 -p udp --dport 1863 -j DROP

iptables -A FORWARD -d 207.46.110.254 -p udp --dport 80 -j DROP

iptables -A FORWARD -s 64.4.12.200 -p udp --sport 7001 -j DROP

iptables -A FORWARD -s 64.4.12.201 -p udp --sport 7001 -j DROP

iptables -A FORWARD -s 65.54.226.247 -p udp --sport 443 -j DROP

iptables -A FORWARD -s 207.46.104.20 -p udp --sport 1863 -j DROP

iptables -A FORWARD -s 207.46.106.99 -p udp --sport 1863 -j DROP

iptables -A FORWARD -s 207.46.110.254 -p udp --sport 80 -j DROP

iptables -A FORWARD -d 64.4.12.200 -p tcp --dport 7001 -j DROP

iptables -A FORWARD -d 64.4.12.201 -p tcp --dport 7001 -j DROP

iptables -A FORWARD -d 65.54.226.247 -p tcp --dport 443 -j DROP

iptables -A FORWARD -d 207.46.104.20 -p tcp --dport 1863 -j DROP

iptables -A FORWARD -d 207.46.106.99 -p tcp --dport 1863 -j DROP

iptables -A FORWARD -d 207.46.110.254 -p tcp --dport 80 -j DROP

iptables -A FORWARD -s 64.4.12.200 -p tcp --sport 7001 -j DROP

iptables -A FORWARD -s 64.4.12.201 -p tcp --sport 7001 -j DROP

iptables -A FORWARD -s 65.54.226.247 -p tcp --sport 443 -j DROP

iptables -A FORWARD -s 207.46.104.20 -p tcp --sport 1863 -j DROP

iptables -A FORWARD -s 207.46.106.99 -p tcp --sport 1863 -j DROP

iptables -A FORWARD -s 207.46.110.254 -p tcp --sport 80 -j DROP

But they do not work.
MSN still can connect to the server.
Does anyone know how to block it??

Notice from moonwitch:

put console tag in, adjusted credits

Review the complete topic (launches new window)