How to use IP Tables blocks a CHAT USERS and Sharing Files with P2P or Napster???
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
How to use IP Tables blocks a CHAT USERS and Sharing Files with P2P or Napster???
Dear All
I'm a newbie and i don't have ip-tables experince also.
So,i would like to know how to use IPTables to block some Chat Software like a Yahoo MSG,MSN,IRC and also with a Sharing files like a Napster,P2P
Could you give a suggestion to me to blocking its?
/me hands you scissors for your internet cable.
Yep.. that should do it. :-D
Ah, File Sharing programs should be easy, and hard to block. As they usualy use a standard port or two for listening and sending connections and they can be blocked off... As for Chat software.. a lot of its written to try all sorts of ports and work around firewalls and bad internet connections.. so you might not get to block that off..
That means,I can't set a IPTABLES Box to block these chat software,right?
But i heard some linux administrator uses IPTABLES block a Chat software successful.
Anyone give me an ideal??
assuming this is a work environment, that the users aren't supposed to be using chat (and def not p2p) and that they _know_ they shouldn't be using it (i.e you've explicitly told them)......
Warn them once, showing them that you know they've been doing it (i.e firewall logs / whatever), explain why it's not allowed and the consequences.
2nd time, sic the HR drones on them.
(yes, it's harsh but they're adults and know they shouldn't be doing it - your network, your rules.)
thankz all
I kicked them by setting a new user policy in my organization.
If someone broked my policy.
I'll inform to their manager to punish their ass!!
It's work than fight with the computer!
hehe
Thanks a lot guys
Seriously though, P2P apps cost companies quite a bit of time and money both in bandwidth but also in repairing viruses and worse - what happens if your employees accidentally shared confidential files? P2P has it's place for personal computing or perhaps you could make a case for internal file sharing but that's it.
As for 'chat' programs... well... There are legitimate and cost-saving uses for Instant Messaging. I think management fears IM at first because they see it as a time/productivity waster but that's the old-school of thought. The mentality of, "if I don't watch my employees, they'll slack off" is not appropriate for today's world. For the most part, knowledge workers like to work and won't spend all day chatting if management does their job to ensure employees are on track with their tasks. *shrug* Eitherway, it's the companies network, they have the right to make the rules.
oh, if you are irritated with the policy, blame management, not the network admin. He's just doing his job.
Originally posted by Blu-star if i had a irritating networkadmin that wouldnīt allow me to chat and stuff like that i would just encrypt it all, then he canīt say a shit
<bofh>You don't think he might be curious about the encrypted traffic? A sniffer / software audit would reveal the source, you'd get a bollocking and would have a typewriter for the next month.</bofh>
Quote:
Originally posted by JordanH oh, if you are irritated with the policy, blame management, not the network admin.
if you have a 1/2 decent PHB (rare), the network admin usually has final say on what's allowed. (not in the sense that he can ok p2p, but he has some kind of veto on non-essential additional services - since he'll have to maintain it).
We use Jabber internally (quicker than email / messages are logged), but it stops at the internal firewall, partly because it doesn't need to go out, but mostly because we (IT staff) have said it's _not_ going out.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.