Ok
Quote:
If you are just trying to see if you can do it - I am all for it.
|
I am trying to block few nasty pages. About 30 of them at the most. I have tried Your idea from yesterday. iptables -I OUTPUT 1 -p tcp -d 12.12.12.12 --dport 80 -j DROP
(where 12.12.12.12 is the IP of the porn site)
should block it
[hagrid@WISHMASTER ~]$ ping
www.bebo.com
PING a500.c.akamai.net (195.27.154.11) 56(84) bytes of data.
64 bytes from 195.27.154.11: icmp_seq=1 ttl=52 time=378 ms
--- a500.c.akamai.net ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 378.525/378.525/378.525/0.000 ms
I am using bebo for example here. This command should look like this right?
iptables -I OUTPUT 1 -p tcp -d 195.27.154.11 --dport 80 -j DROP
I have typed it all at the server and i could still load bebo.
I have added it to my ICS.sh script and rebooted.
Bebo is still coming up...
Any other ideas? If I could block it by IP only I could still managed by host would be ideal.
Joble from
www.pclinuxos.com gave me this idea
Quote:
This looks interesting:
http://onlyubuntu.blogspot.com/2007/...p-blocker.html
Haven't checked the repos for it yet.
It's in the repos:
iplist
a list based packet handler
iplist is a list based packet handler which uses
the netfilter netlink-queue library (kernel 2.6.14 or
later). It filters by IP-address and is optimized for
thousands of IP-address ranges.
http://iplist.sourceforge.net/
Let me know if you don't like it, and I'll keep looking.
|
but i would rather use something from command line as graphic mode will get the server under more preasure specially that i am using kde and this works with gnome. Or am I wrong here?
I am all ears.
Andy