YAHOO, MSN, PALTALK, MIRC Not Working

Protecting your Linux box

YAHOO, MSN, PALTALK, MIRC Not Working

Postby mudasir » Fri Nov 10, 2006 9:11 pm

I need your help.
I have a Cable net of about 100 users. currently i am running on Windows, i am shifting to Linux RHEL4. Now the problem is that i have configured Squid as i want it, but messengers like, MSN, YAHOO, PALTALK, EYEBALL CHAT and MIRC these are the messngers my clients use which are not working on LINUX SERVER.....

As i have read it in posts that this can be done by IPTABLES.....

I dont know how to use IPTABLES..........

Please help me out in making these Messengers Work, cause i am facing alot of problems....i have a dead line of 18th of November....Please Help me out....

And if you guyz can refer me a page for beginers guide of IPTABLES....

And also that i have installed Squid 2.6 Stable4....The Transparent Proxy Options
httpd_accel_port 80
httpd_accel_host virtual
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
are not there......
So please also tell me how to Set Transparent proxy in Squid 2.6 Stable4

-----------------------------
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

I Forgot About one thing

Postby mudasir » Fri Nov 10, 2006 9:50 pm

Is there a way to allow all ports to all clients, but limit there bandwidth to 10KBps...

Please help me out....
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

yes its possbile

Postby zaki486 » Sat Nov 11, 2006 8:56 am

walaikum salam,
dear brother,

if u want this project done, i can help u with restricting every each client of ur cable to maximum use upto 10 Kbps limit, so plz contact me for the project. my name is zaki, and we will decide it.


u can contact me on
Flash Com Enterprises (A sub-partner of Etisalat Telecom UAE)
Linux End Networks Executive
Karachi
Ghulam Zakaria
zaki486@yahoo.com
zaki486@hotmail.com
0322-2170602
0345-2685528
0300-8902692
zaki486
Company Havaldaar Major
 
Posts: 177
Joined: Tue Jul 08, 2003 11:33 pm
Website: http://www.gestetner.com.pk
WLM: zaki486@hotmail.com
Yahoo Messenger: zaki486@yahoo.com
Location: karachi ,pakistan

Re:

Postby LinuxFreaK » Sun Nov 12, 2006 10:49 am

Dear mudasir,
Salam,

I will still prefer you to use Socks server on your Linux Gateway. So, that your clients will surft MSN/YIM/AIM/ICQ/JAB/PALTALK etc.

FYI, http://ss5.sf.net

Best Regards.
Farrukh Ahmed
LinuxFreaK
Site Admin
 
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
ICQ: 82075802
Website: http://www.linuxpakistan.net/wiki/index.php?pagename=LinuxFreak
WLM: f4fahmed@hotmail.com
Yahoo Messenger: f4fahmed@yahoo.com
AOL: linuxpakistan@aol.com
Location: Karachi

Postby mudasir » Sun Nov 12, 2006 3:08 pm

Thnx for the reply....
i dont know how to setup Socks Server....and the configuration guide on the link you gave me is quite difficult.....

i was thinking of something related to IPTABLES

and limiting the bandwidth of users....not using delay pools cause that will only limit there browsing speed

-----------------------
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

Postby mudasir » Tue Nov 14, 2006 5:02 am

Hi,
i was thinkng of getting some help form the GURU's here...but i dont think that i will be getting any help...
i think for you guyz this was not a big prob...but any way....Farrukh bhai i appriciate your efforts and the help you did.....SOCKS server is a good thing but i was thinking of opening all ports to all clients....but limiting their bandwidth to 8KBps to 10 KBps....

Any way guyz....

--------------------------
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

Re:

Postby LinuxFreaK » Wed Nov 15, 2006 10:45 am

Dear mudasir,
Salam,

mudasir wrote:i was thinkng of getting some help form the GURU's here...but i dont think that i will be getting any help...
i think for you guyz this was not a big prob...but any way....Farrukh bhai i appriciate your efforts and the help you did.....SOCKS server is a good thing but i was thinking of opening all ports to all clients....but limiting their bandwidth to 8KBps to 10 KBps....


How can you compare open ports with masquerade ? You can use following rules it will help your clients to run msn and yahoo messenger.

# /sbin/iptables -t nat -F
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 192.68.0.1/255.255.255.0 -j MASQUERADE
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 192.68.0.1/255.255.255.0 -p TCP --dport 5000:5010 -j MASQUERADE
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 192.68.0.1/255.255.255.0 -p UDP --dport 5000:5010 -j MASQUERADE
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 192.68.0.1/255.255.255.0 -p TCP --dport 1863 -j MASQUERADE
# /sbin/iptables -t nat -A POSTROUTING -o eth1 -s 192.68.0.1/255.255.255.0 -p UDP --dport 1863 -j MASQUERADE


Best Regards.
Farrukh Ahmed
LinuxFreaK
Site Admin
 
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
ICQ: 82075802
Website: http://www.linuxpakistan.net/wiki/index.php?pagename=LinuxFreak
WLM: f4fahmed@hotmail.com
Yahoo Messenger: f4fahmed@yahoo.com
AOL: linuxpakistan@aol.com
Location: Karachi

Re:

Postby LinuxFreaK » Wed Nov 15, 2006 10:47 am

Dear mudasir,
Salam,

mudasir wrote:i dont know how to setup Socks Server....and the configuration guide on the link you gave me is quite difficult.....


What difficulties you are facing ?

If RTM is difficult job for you then i can not help you out.

Best Regards.
Farrukh Ahmed
LinuxFreaK
Site Admin
 
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
ICQ: 82075802
Website: http://www.linuxpakistan.net/wiki/index.php?pagename=LinuxFreak
WLM: f4fahmed@hotmail.com
Yahoo Messenger: f4fahmed@yahoo.com
AOL: linuxpakistan@aol.com
Location: Karachi

Postby mudasir » Sun Nov 19, 2006 4:19 am

Salam
Farrukh Bhai...the rules of IPTABLES....it helped me alot....and now the only porblem i am facing is BANDWIDTH DISTRIBUTION.....
what i want to do is to limit all my clients to 10 KBps....
i just want to now how is it possible....

I heard about CBQ.init....i have downloaded the script but dont know how to configure it....

i am using IP CLASS A
10.0.0.1
can you help me out in this thing also......
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

Re:

Postby LinuxFreaK » Mon Nov 20, 2006 9:57 am

Dear mudasir,
Salam,

mudasir wrote:now the only porblem i am facing is BANDWIDTH DISTRIBUTION.....what i want to do is to limit all my clients to 10 KBps....
i just want to now how is it possible.... I heard about CBQ.init....i have downloaded the script but dont know how to configure it....


I will prefer you either use CBQ or squid delay pools.

FYI, http://www.linuxpakistan.net/forum2x/vi ... php?t=2322

Best Regards.
Farrukh Ahmed
LinuxFreaK
Site Admin
 
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
ICQ: 82075802
Website: http://www.linuxpakistan.net/wiki/index.php?pagename=LinuxFreak
WLM: f4fahmed@hotmail.com
Yahoo Messenger: f4fahmed@yahoo.com
AOL: linuxpakistan@aol.com
Location: Karachi

Postby mudasir » Tue Nov 21, 2006 1:50 am

AOA Farrukh bhai....
thanx for your help.....

i did configure my squid to use delay pools, but the problem that is coming is that...it is creating a lot of delay in loading any page...
like if i write any web address and press enter.....it does nothing for about 10 seconds....then it starts loading the page....now i want to know how to remove this delay....

acl local src 10.0.0.2/255.255.255.255
acl network src 10.0.0.0/8 10.0.1.0/8
acl ext url_regex -i ftp .mpg .mp3 .rm .ram .rmv .wma .wmv .mpeg .pdf .tar.gz .tar.bz2 .exe .zip .rar .3gp .bsp .doc .xls

delay_pools 3

## No Bandwidth Restriction for Local Web-server Downloading
delay_class 1 2
delay_access 1 allow local
delay_access 1 deny all
delay_parameters 1 -1/-1 -1/-1

## Downloading Bandwidth Rule
delay_class 2 2
delay_access 2 allow ext
delay_access 2 deny all
delay_parameters 2 30000/28000 6000/6000

## Browsing Bandwidth Rule
delay_class 3 2
delay_access 3 allow network
delay_access 3 deny all
delay_parameters 3 -1/-1 -1/-1


these are my delay pools rules.....
now can you help me in pointing out the problem....
and can you tell me from where can i get an example of cbq.init woking at its best.....
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

Re:

Postby LinuxFreaK » Tue Nov 21, 2006 9:07 am

Dear mudasir,
Salam,

Read Little bit about Delay Pools.

FYI, http://quark.humbug.org.au/publications ... squid.html

Best Regards.
Farrukh Ahmed
LinuxFreaK
Site Admin
 
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
ICQ: 82075802
Website: http://www.linuxpakistan.net/wiki/index.php?pagename=LinuxFreak
WLM: f4fahmed@hotmail.com
Yahoo Messenger: f4fahmed@yahoo.com
AOL: linuxpakistan@aol.com
Location: Karachi

Postby mudasir » Tue Nov 21, 2006 9:19 pm

AOA ....
i went through the link farrukh bhai....
but the problem is still there....
i just want to know why it is creating a lot of delay......

what i have understood from that page is that....
delay pools work as a bucket....
so i think when the bucket gets full it starts creating delays....

but thats just my thought....

i again thank all you guyz for prividing me knowledge about linux....

basically i am running a cable net of 90 users....
i have ADSL 256Kbps Down and 128Kbps up.....
what i wanted to do with my bandwidth is....

-------------------------------------------------------------------------------
Open all ports to users so that all softwares will work...
Restrict per user bandwidth to 10 KBps...
-------------------------------------------------------------------------------

What i have achieved so far with the help form you guyz....

-------------------------------------------------------------------------------
I have configured SQUID as per my need....(accept fot the delay pools)
I have done some work on opening all ports to all users....but still in progress...
Have done nothing regarding badnwidth restricting part.....
-------------------------------------------------------------------------------

So now i have told everything...what i want to do and what i have done so far.....

currently i am running my server on windows.....but want to shift it to linux
by January.....NEW YEAR -- NEW THINGS :)

I hope you guyz will help me out...
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai

Re:

Postby LinuxFreaK » Wed Nov 22, 2006 9:41 am

Dear mudasir,
Salam,

Mudasir sahab please open your eyes and read carefully and you will understand i will not tell you why it make soo much dealy until or unless you figure it out by your self.

Best Regards.
Farrukh Ahmed
LinuxFreaK
Site Admin
 
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
ICQ: 82075802
Website: http://www.linuxpakistan.net/wiki/index.php?pagename=LinuxFreak
WLM: f4fahmed@hotmail.com
Yahoo Messenger: f4fahmed@yahoo.com
AOL: linuxpakistan@aol.com
Location: Karachi

Postby mudasir » Wed Nov 22, 2006 11:14 am

AOA....

Thanx for the advise Farrukh bhai.....i think i have figured it out....
its about the "delay_initial_bucket_level" option.....i think i have to increase the percentage in this option.....
am i right
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
mudasir
Captain
 
Posts: 565
Joined: Tue Oct 17, 2006 5:23 am
Website: http://www.crystalnetworks.org
Location: Dubai


Return to “%s” Security

Who is online

Users browsing this forum: No registered users and 1 guest