Ricado Varela wrote: > Mike Tremaine wrote: >> Mike Tremaine wrote: >>> Ricado Varela wrote: >>>> In IP tables i have: >>>> >>>> Chain OUTGOINGFW (2 references) >>>> pkts bytes target prot opt in out source >>>> destination >>>> 0 0 DROP tcp -- br0 eth1 0.0.0.0/0 >>>> 213.199.0.0 >>>> 24 1152 DROP tcp -- br0 eth1 0.0.0.0/0 >>>> 207.46.96.143 tcp dpt:80 >>>> >>>> >>>> If i go to Proxy and uncheck "Transparent on GREEN", it does work, i >>>> cannot access webmessenger (with a timeout error, not firewall's error), >>>> but content filter stops working. >>>> >>>> Does this says something to you? >>>> >>> It makes me think that the messenger service is running on port 80 :), so >>> instead of catching it in the firewall [iptables] you should be able to >>> catch >>> it in Squid. Not sure if the GUI allows this but take a look. >>> >> >> Look at Proxy->Http->Content Filter near the bottom there is custom black >> and >> white lists. Try using the blacklist for those ranges. >> >> -Mike > > I had started by that, see: > > http://207.46.96.141/ > http://207.46.110.15/ > https://login.live.com/ > http://webmessenger.msn.es/ > http://webmessenger.msn.com/ > http://207.46.0.0 > > I have that list but didn't work either. > >
Hmmm then I think it is back to trying to use a combo of Squid ACL and Iptables. A quick google showed this thread that might get you in the right direction. http://answers.google.com/answers/threadview?id=523109 I don't have an msn account so I can't really tesst this out but you can use tcpdump on the Endian firewall to see the packets and the ports which will help you narrow it down. [Tcpdump and grep are a huge huge help when trying to troubleshoot firewall rules and networking, learn to love them.] -Mike ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Efw-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/efw-user
