LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Closed Thread
 
Search this Thread
Old 07-25-2006, 02:23 PM   #1
drokmed
Member
 
Registered: Dec 2005
Location: St Petersburg, FL, USA
Posts: 219

Rep: Reputation: 30
Need firewall to block all streaming audio/video


Hi all,

I've built a firewall using iptables for our network, but users can still watch videos and listen to streaming audio, which is killing our DSL WAN link, so I want to block it.

I'm running:
CentOS 4.3
iptables (use fwbuilder to configure firewall)
squid (proxy)
dansguardian (filter)
clamav (anti-virus)

Dansguardian blocks the unwanted material/sites just fine, but not the streaming audio from sites such as www.pandora.com

My firewall is redirecting ports 80 and 3128 (squid) to 8080 (dansguardian).

Blocking the site by name isn't a solution, because there's too many other sites I'm not aware of, that use similar technology.

Anyone have luck blocking these kinds of traffic?

Thanks for reading,

Daryl
 
Old 07-25-2006, 03:13 PM   #2
msound
Member
 
Registered: Jun 2003
Location: SoCal
Distribution: CentOS
Posts: 465

Rep: Reputation: 30
you could block content by file extension. although I'm not sure if it works with embedded streaming content.

squid.conf:
# Block media file extensions
acl blocked_exts url_regex -i \.wmv$ \.mp3$ \.mpeg$ \.rm$
http_access deny blocked_exts

This would definitely prevent users from downloading files with these extensions, but again I'm not sure how it would handle streaming. It would be worth a try.
 
Old 07-25-2006, 03:14 PM   #3
pljvaldez
Guru
 
Registered: Dec 2005
Location: Somewhere on the String
Distribution: Debian Squeeze (x86)
Posts: 6,092

Rep: Reputation: 269Reputation: 269Reputation: 269
http://service.real.com/firewall/adminfw.html -- ports used by real player

You could google around and try to track down all the ports used by all the different media players, but I think most of these stream over port 80, so that's probably out of the question to block that. Also, make sure you're blocking the inbound and outbound requests for these ports...

With Dan's Guardian, can't you create rules to filter out things by filetype like *.ram for RealAudio or *.wmv for windows movie? You'd have to figure out a lot of the different types of files, but maybe that's a solution.
 
Old 07-25-2006, 03:34 PM   #4
drokmed
Member
 
Registered: Dec 2005
Location: St Petersburg, FL, USA
Posts: 219

Original Poster
Rep: Reputation: 30
Thanks. File types sounds alot more blockable than ports, for sure. I'll try the file extensions tonight, and let you know. It *should* work
 
Old 10-17-2006, 11:37 AM   #5
tonyfreeman
Member
 
Registered: Sep 2003
Location: Fort worth, TX
Distribution: Debian testing 64bit at home, EL5 32/64bit at work.
Posts: 187

Rep: Reputation: 30
drokmed ... what did you finally end up doing? If you found a way to block streaming media then please post how you did it. I need to do something similar. I'd like to block streaming media from everywhere except for the streaming media inside my domain.
 
Old 10-18-2006, 10:31 AM   #6
drokmed
Member
 
Registered: Dec 2005
Location: St Petersburg, FL, USA
Posts: 219

Original Poster
Rep: Reputation: 30
Hi Tony,

Actually, I'm just now getting back to that project, so I haven't tried that yet. I was unhappy with CentOS, so have rebuilt on SuSE 10.1 which is working very nicely.

I'm planning to finish the firewall this week, so hopefully will have some info for this thread.
 
0 members found this post helpful.
Old 11-04-2006, 01:28 AM   #7
allislamic
LQ Newbie
 
Registered: Oct 2006
Location: PAKISTAN
Posts: 3

Rep: Reputation: 0
How to Prevent Users From Using Peer to peer Softwares

Hi
I am using RH9 ans squid 2.5 , My Question is How I can stop peer to peer softwares using squid.Its comsuming lot of bandwidth.
Any help will be appreciated
 
Old 12-02-2009, 07:14 AM   #8
nelchege
LQ Newbie
 
Registered: Dec 2009
Posts: 1

Rep: Reputation: 1
Talking Need firewall to block all streaming

Try this.
Config File squid configuration in /etc/squid/squid.conf

Edit File in squid.conf above line in ACL Zone.
################## ACL for Radio / Video Stream ###########################
acl StreamingRequest1 req_mime_type -i ^video/x-ms-asf$
acl StreamingRequest2 req_mime_type -i ^application/vnd.ms.wms-hdr.asfv1$
acl StreamingRequest3 req_mime_type -i ^application/x-mms-framed$
acl StreamingRequest4 req_mime_type -i ^audio/x-pn-realaudio$
acl StreamingReply1 rep_mime_type -i ^video/x-ms-asf$
acl StreamingReply2 rep_mime_type -i ^application/vnd.ms.wms-hdr.asfv1$
acl StreamingReply3 rep_mime_type -i ^application/x-mms-framed$
acl StreamingReply4 rep_mime_type -i ^audio/x-pn-realaudio$
################## ACL for Radio / Video Stream ###########################

Edit File in squid.conf above line in http_access Zone.
#################### Rules to block Radio / Video Stream #################
http_access deny StreamingRequest1 all
http_access deny StreamingRequest2 all
http_access deny StreamingRequest3 all
http_access deny StreamingRequest4 all

http_reply_access deny StreamingReply1 all
http_reply_access deny StreamingReply2 all
http_reply_access deny StreamingReply3 all
http_reply_access deny StreamingReply4 all
#################### Rules to block Radio / Video Stream ################
 
1 members found this post helpful.
Old 12-02-2009, 03:03 PM   #9
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
nelchege, we value your time and energy, and encourage you to spend it helping members with current issues. I'm closing this zombie thread so it may rest in peace. Please don't make a habit of necroposting.
 
0 members found this post helpful.
  


Closed Thread

Tags
content, dansguardian, squid, streaming


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Audio Video Streaming mohan_rahul Linux - Software 1 12-16-2005 09:12 AM
Streaming Audio/Video bper Linux - Software 9 06-10-2005 06:04 PM
streaming audio/ video odd Linux - Software 1 04-27-2004 10:44 AM
Bridging 2 LANs / Streaming Audio through Firewall andrewstr Linux - Networking 0 01-14-2004 03:58 PM
Streaming audio and video.... shadar Linux - Newbie 3 07-31-2003 09:52 PM


All times are GMT -5. The time now is 09:17 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration