Hey Sluggers,
I have successfully been able to block msn messenger access from our LAN, however I don't feel too comfortable denying access to 4 class C subnets... I don't know what other legit sites there are in the specified range.
What I have done is blocked port 1863, then put this line in squid.conf:
acl msn dst 64.4.13.0/24 152.163.241.0/24 64.12.163.0/24 207.46.110.0/24
http_access deny msn
Most sites I have been to recommend blocking by dst, however I noticed I could block by application/type with the following line in squid.conf:
acl msn-type req_mime_type -i ^application/x-msn-messenger$
http_access deny msn-type
I have tested it, and cannot see any problems with it.
Does anyone else have any recommendations on which I should use, or perhaps another method?
Cheers,
Scott
-- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
