RE: blocking specific ips on a linux server

["Rechenberg, Andrew" <arechenberg shermfin com>]

Actually, unless they've changed the code, I believe the AIM servers
listen on almost EVERY TCP port.  I know they listen on 53, because at
my old employer they blocked everything except port 53 for DNS lookups
and I configured my AIM client to use 53 and it worked just fine.

You could block all of the AIM server IP's if you know what they are.
In that case just use the ipchains commands below, or use iptables.

-----Original Message-----
From: Anthony E. Greene [mailto:agreene pobox com] 
Sent: Monday, September 30, 2002 1:24 PM
To: redhat-list redhat com
Subject: Re: blocking specific ips on a linux server


On 27-Sep-2002/16:40 -0400, Meghan Madel <megmadel mac com> wrote:
>Hello,
>I would like to block AIM on a linux server.  What would you recommend 
>is the best way to do this.  I found some documentation on 
>"access-lists," but am not familiar with this. I couldn't tell if it 
>was it's own file or if this was to be added to another file.
>
>I have found info on the ip's, port #, etc.....just don't know where or

>how to block those.

Use ipchains:

ipchains --append input --protocol tcp --source-port 5190 --jump REJECT
ipchains --append input --protocol udp --source-port 5190 --jump REJECT
ipchains --append input --protocol tcp --destination-port 5190 --jump
REJECT
ipchains --append input --protocol udp --destination-port 5190 --jump
REJECT

Tony
-- 
Anthony E. Greene <mailto:agreene pobox com>
OpenPGP Key: 0x6C94239D/7B3D BD7D 7D91 1B44 BA26  C484 A42A 60DD 6C94
239D
AOL/Yahoo Chat: TonyG05      HomePage: <http://www.pobox.com/~agreene/>
Linux: the choice of a GNU Generation. <http://www.linux.org/>



-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request redhat com?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list