Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am in need of help. There is this person I want to block from my network that uses a email address annoyinguy@email.com . His Msn also uses the same email.
My linux box is my networks firewall (gentoo iptables). Becuase email and msn isnt encrypted, Is it possible to block him by filtering all packets containing annoyingguy? Can I use iptables to do this?
Originally posted by sendas4 I am in need of help. There is this person I want to block from my network that uses a email address annoyinguy@email.com . His Msn also uses the same email.
My linux box is my networks firewall (gentoo iptables). Becuase email and msn isnt encrypted, Is it possible to block him by filtering all packets containing annoyingguy? Can I use iptables to do this?
- sen
You can't do this with just pure iptables/netfilter, because iptables doesn't understand the protocols being used above the TCP layer (e.g. POP3, IMAP, HTTP, etc.). In order to do what you want to do, you need to use a filtering proxy. This link explains the difference: http://www.burningvoid.com/iaq/fwalltype.php
Even if you block those packets, it would make it impossible to download your email if it contains it in there. It would interrupt the TCP connection with your server (or the msn server) causing it to be reset.
Thats a good point about it resetting. Wow that leaves me at a loss. Ive heard of packet injecting which seems similar to this idea. Would it be possible to filter his packet by just changing the contents of his message? so it would be a blank email or msn msg?
Well, then you have to take into account that an email can (and generally will) span more than one packet. And conversely, multiple emails can be in the same packet (when you receive over IMAP/POP, not SMTP). And of course, you'd need to adjust checksums and so forth.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.