Yahoo Block

Protecting your Linux box

Yahoo Block

Postby majidnazeer » Mon Oct 30, 2006 2:09 pm

Hi all!

I try to block yahoo through below command.

iptables -A FORWARD -p TCP --dport 5000:5010 -j REJECT
# iptables -A FORWARD -d cs.yahoo.com -j REJECT
# iptables -A FORWARD -d scsa.yahoo.com -j REJECT

But could not be block. Anybody can help me.

Thanks

Majid
majidnazeer
Naik
 
Posts: 60
Joined: Wed Oct 05, 2005 12:37 pm

Postby kbukhari » Mon Oct 30, 2006 2:42 pm

its very hartd to block yahoo via iptables or squid
reason yahoo using multiple ports for login (i.e 23 , 25 , 110 , 143 , 21 , 80 ) all these ports are know we cant block them
if you block it from squid or tcp/5050 then may b it run from 23 or 21 port
--
Syed Kashif Ali Bukhari
+92-345-8444420
http://sysadminsline.com
http://kashifbukhari.com
kbukhari
Major General
 
Posts: 1222
Joined: Sat Dec 31, 2005 12:29 am
Website: http://kashifbukhari.com
Location: Lahore

Postby asim31 » Mon Oct 30, 2006 3:12 pm

Salam,
Try this one.

iptables -A FORWARD -i $localif -o $publicif -p tcp -m multiport --dports 1863,5050,443 -j REJECT

This rule also block your network peer to peer connections
iptables -A FORWARD -p tcp -m state --state RELATED,ESTABLISHED -j ACCEPT
Abbas
asim31
Lance Naik
 
Posts: 31
Joined: Sat Aug 27, 2005 6:14 pm
ICQ: 2

Postby nomankhn » Mon Oct 30, 2006 4:39 pm

Dear majidnazeer,

Use below script

where ipt=/sbin/iptables

$ipt -A INPUT -s 69.46.24.82 -j DROP
$ipt -A INPUT -s 206.190.50.13 -j DROP
$ipt -A INPUT -s 216.109.116.190 -j DROP
$ipt -A INPUT -s 209.62.176.52 -j DROP
$ipt -A INPUT -s 63.208.235.96 -j DROP
$ipt -A INPUT -s 216.239.37.87 -j DROP
$ipt -A INPUT -s 216.239.37.86 -j DROP
$ipt -A INPUT -s 216.239.37.85 -j DROP
$ipt -A INPUT -s 202.71.128.190 -j DROP
$ipt -A FORWARD -s 66.30.10.90 -j DROP
$ipt -A FORWARD -s relay.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s relay1.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s relay2.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s relay3.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s relay4.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s relay5.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s relay6.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s relay7.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s relay8.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip1.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip2.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip3.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip4.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip5.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip6.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip7.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip8.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip9.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip10.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip11.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip12.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip13.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip14.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip15.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip16.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip17.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip18.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip19.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip20.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip21.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip22.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip23.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip24.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip25.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip26.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip27.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip28.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip29.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip30.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip31.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip32.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip33.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip34.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip35.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip36.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip37.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip38.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip39.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip40.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip41.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip42.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip43.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip44.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip45.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip46.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip47.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -s sip48.voice.re2.yahoo.com -j DROP
$ipt -A FORWARD -p tcp -m iprange --src-range 68.142.226.64-68.142.226.72 -j DROP
$ipt -A FORWARD -p tcp -m iprange --src-range 216.155.193.128-216.155.193.187 -j DROP

Regards
Noman Liaquat Khanzada Rajput
Linux means productivity and fun.
We all love Linux, but it's also a fact that some people might not be able to migrate.
nomankhn
Colonel
 
Posts: 714
Joined: Wed Aug 07, 2002 8:00 pm

Yahoo Block

Postby majidnazeer » Wed Nov 01, 2006 9:48 am

I will try then inform u.

Thanks
majidnazeer
Naik
 
Posts: 60
Joined: Wed Oct 05, 2005 12:37 pm


Return to “%s” Security

Who is online

Users browsing this forum: No registered users and 1 guest

cron