LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 04-16-2007, 01:28 AM   #1
sakthi.s
Member
 
Registered: Nov 2006
Posts: 42

Rep: Reputation: 15
How to block gtalk messenger through squid


Dear All

I have squid proxy in our office. I want to block gtalk messenger through squid ACL , I am not using iptable firewall as already cisco asa in place. I want to block gtalk messenger only through ACL.

Can Anyone help me out.
 
Old 04-16-2007, 08:39 AM   #2
Jzarecta
Member
 
Registered: Dec 2005
Location: Villahermosa, Bucharest, Birminham, Brooklyn, Beverly
Distribution: Mandriva
Posts: 118

Rep: Reputation: 15
It will be hard to block the web gtalk unless you also block gmail from the banned sites. For gtalk client just block the port gtalk runs under (5223).
 
Old 04-16-2007, 11:25 PM   #3
sakthi.s
Member
 
Registered: Nov 2006
Posts: 42

Original Poster
Rep: Reputation: 15
ok. tell me how to block gtalk port in squid itself. i don't have iptables in place.
 
Old 04-17-2007, 08:07 AM   #4
sakthi.s
Member
 
Registered: Nov 2006
Posts: 42

Original Poster
Rep: Reputation: 15
tried the same ACL, but still my users are able to login into Gtalk. I tried with the following acl

acl blocked_ports port 5223 5222

http_access deny blocked ports


Can you pls. guide what could be the problem is?
 
Old 04-18-2007, 02:51 AM   #5
sakthi.s
Member
 
Registered: Nov 2006
Posts: 42

Original Poster
Rep: Reputation: 15
Pasted my exisiting squid.conf file. Kindly let me know where i am making mistake.


# And finally deny all other access to this proxy
http_access allow localhost

#acl all src 0.0.0.0/0.0.0.0
acl lan1_blr src 192.168.1.0/255.255.255.0
acl lan2_blr src 192.168.100.0/255.255.255.0
acl msn_hosts src "/etc/squid/msn_hosts"
acl yahoo_hosts src "/etc/squid/yahoo_hosts"
acl allowed_machines src "/etc/squid/allowed_machines"
acl support_staff src "/etc/squid/support_staff"
acl callcenter src "/etc/squid/callcenter"

acl blocked_ports port 5222-5223
acl rejected_urls url_regex "/etc/squid/rejected_urls"
acl allowed_urls dstdomain "/etc/squid/allowed_urls"
acl msn dstdomain "/etc/squid/msn"
acl yahoo dstdomain "/etc/squid/yahoo"

http_access deny blocked_ports
http_access deny rejected_urls
http_access deny !allowed_machines
http_access deny !lan1_blr !lan2_blr
http_access deny yahoo_hosts yahoo
http_access allow msn_hosts msn
http_access allow callcenter allowed_urls allowed_machines
http_access allow support_staff !callcenter
http_access deny all
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Block Messenger thinker Linux - Networking 4 12-17-2006 08:11 AM
block rediffbol, trillion messenger from squid soumalya Red Hat 0 11-18-2006 06:17 AM
Block Messenger shipon_97 Linux - Security 4 03-27-2006 02:01 AM
are talk,gtalk,ytalk;LAN instant messenger?! l_9_l Linux - Networking 1 03-29-2002 04:42 PM
Howto Block Msn Messenger in Squid johnlee Linux - Security 2 10-30-2001 03:21 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 10:37 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration