Firewall Wizards mailing list archives

RE: ip range with iptables

From: "Josh Welch" <jwelch () buffalowildwings com>
Date: Fri, 18 Apr 2003 15:36:02 -0500

Wijaya, J. said:

I am trying to block yahoo messenger for my LAN, but only on certain ip
range, how can i do this? i already read some articles that we can't do
this with iptables, but is there any other way to work around this task??


A rule like this should block anything going to the messenger server from
the ip range specified:
(Assuming that eth0 is your internal interface)
iptables -A FORWARD -i eth0 -o eth1 -d IP.FOR.YAHOO.MESSENGER -s
10.0.0.0/24 -j REJECT

On more thing, i manage to figured out yahoo messenger servers, instead
blocking each IP address for it, i block the main servers,

scs-fooa.yahoo.com
scs-foob.yahoo.com
scs-fooc.yahoo.com
scs-food.yahoo.com
scs-fooe.yahoo.com
scs-foof.yahoo.com

Maybe some of network administrators are already know this, just to share
things.

thanks in advance

-iYung-


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

ip range with iptables Wijaya, J. (Apr 18)
- Re: ip range with iptables Martin A. Brown (Apr 19)
- Re: ip range with iptables Magosányi Árpád (Apr 19)
  - Re: ip range with iptables Kadlecsik Jozsi (Apr 23)
- RE: ip range with iptables Josh Welch (Apr 19)