Gelu wrote:
Pt a bloca dc++ (sau mai bine unele din porturile folosite de dc++) folosesc
urmatoarele comenzi (care functioneaza)
iptables -I PREROUTING -t mangle -p tcp -m multiport --destination-ports 411,1411,4111,6969,8600 -j DROP
iptables -I PREROUTING -t mangle -p udp -m multiport --destination-ports
411,1411,4111,6969,8600 -j DROP
iptables -I PREROUTING -t mangle -p tcp -m multiport --source-ports
411,1411,4111,6969,8600 -j DROP
iptables -I PREROUTING -t mangle -p udp -m multiport --source-ports
411,1411,4111,6969,8600 -j DROP
De ce nu pot folosi aceleasi comenzi pt porturile de netbios? La inceput iptraf nu mai arata conexiuni prin porturile netbios-ului, dar dupa cateva minute, iar se initializeaza conexiuni prin porturile respective.
Mentionez ca am 2 clase de IP-uri rutabile.
Multumesc
merge fara probleme si pt windows shit. eu folosesc asa:
$IPT -A INPUT -p tcp -m multiport --dports 135,136,137,138,139,445
-j DROP
$IPT -A INPUT -p udp -m multiport --dports 135,136,137,138,139,445
-j DROP
merge la fel de bine si in tabela mangle, cum ai folosit tu
--
Never underestimate the havoc that can be wreaked by misunderstanding the
documentation.
_______________________________________________
RLUG mailing list
[email protected]
http://lists.lug.ro/mailman/listinfo/rlug
