It's possible... I'm using this rules in my firewalls:
iptables -A PREROUTING -t mangle -p tcp --sport ftp-data -j TOS --set-tos Minimize-Throughput iptables -A PREROUTING -t mangle -p tcp --sport ftp -j TOS --set-tos Minimize-Throughput iptables -A PREROUTING -t mangle -p tcp --sport www -j TOS --set-tos Maximize-Throughput and some known ports... try to use the rule string with this TOS, or redirecting to another route with tc class based queueing(cbq) []s gd ----- Original Message ----- From: "Matias G. Lambert ( OSInet )" <[EMAIL PROTECTED]> To: <[email protected]> Sent: Wednesday, August 13, 2003 12:05 PM Subject: RE: blocking Kazaa on iptables? > Is it possible to limit traffic instead of blocking with that feature? > Or how can I limit that kazaa an emule traffic? > > Matias Lambert > OSInet Telecomunicaciones > Capital Federal - Buenos Aires > Argentina - CA1185ACA > [EMAIL PROTECTED] > http://www.osinet.com.ar > > -----Mensaje original----- > De: Genilto Dallo [mailto:[EMAIL PROTECTED] > Enviado el: Martes, 12 de Agosto de 2003 02:54 p.m. > Para: Fabricio Cannini; [email protected] > Asunto: Re: blocking Kazaa on iptables? > > > yes... > > ----- Original Message ----- > From: "Fabricio Cannini" <[EMAIL PROTECTED]> > To: "Genilto Dallo" <[EMAIL PROTECTED]>; > <[email protected]> > Sent: Tuesday, August 12, 2003 1:16 PM > Subject: Re: blocking Kazaa on iptables? > > > > Does it blocks kazaa running on port 80? > > > > > > > > --- Genilto Dallo <[EMAIL PROTECTED]> escreveu: > > > You must apply the patch for "string match" to the > > > kernel source. > > > > > <http://www.iptables.org/documentation/pomlist/pom-extra.html#string> > > > > > > before use this rules... > > > > > > # iptables -m string --string "X-Kazaa-Username:" -j > > > DROP > > > # iptables -m string --string "X-Kazaa-Network:" -j > > > DROP > > > # iptables -m string --string "X-Kazaa-IP:" -j DROP > > > # iptables -m string --string "X-Kazaa-SupernodeIP:" > > > -j DROP > > > > > > > > > []s > > > Genilto Dallo > > > > > > ----- Original Message ----- > > > From: <[EMAIL PROTECTED]> > > > To: <[email protected]> > > > Sent: Friday, August 08, 2003 7:05 PM > > > Subject: blocking Kazaa on iptables? > > > > > > > > > > I've searched on google for that, but all I found > > > were unanswered > > > questions. > > > > > > > > How to block kazaa with a linux-based firewall? > > > I'm using 2.4 kernel, so > > > I'm > > > > open to IPTables. > > > > > > > > The only thing I saw that *might* be of use is > > > this comment on a forum > > > thread: > > > > > > > > ---------begin------- > > > > pr�v at kigge i det her spm - der er et iptables > > > script. > > > > > > > > Der er bla f�lgende kode > > > > #FastTrack (KaZaA, Grokster) > > > > /sbin/iptables -A INSPECT -p TCP -m string > > > --string "X-Kazaa-Username:" -j > > > > INSDROP > > > > /sbin/iptables -A INSPECT -p TCP -m string > > > --string "X-Kazaa-Network:" -j > > > > INSDROP > > > > /sbin/iptables -A INSPECT -p TCP -m string > > > --string > > > "X-Kazaa-SupernodeIP:" -j > > > > INSDROP > > > > ---------end------- > > > > > > > > the address is: > > > > http://www.eksperten.dk/spm/299949 > > > > > > > > but I don't even know what language is that... > > > > any ideas? > > > > > > > > Regards, > > > > > > > > > > > > Breno Moiana > > > > > > > > > ------------------------------------------------------------- > > > > "Science is organized knowledge. Wisdom is > > > organized life." > > > > > > > > "Ci�ncia � conhecimento organizado. Sabedoria � > > > vida organizada." > > > > -- Immanuel Kant > > > > > > > > > > > > > > > > > > > > -- > > > > To UNSUBSCRIBE, email to > > > [EMAIL PROTECTED] > > > > with a subject of "unsubscribe". Trouble? Contact > > > [EMAIL PROTECTED] > > > > > > > > > > > > > -- > > > To UNSUBSCRIBE, email to > > > [EMAIL PROTECTED] > > > with a subject of "unsubscribe". Trouble? Contact > > > [EMAIL PROTECTED] > > > > > > > ===== > > "Se conhecer a ti e conhecer o teu inimigo, > > n�o temer�s o resultado de mil batalhas." > > (Sun Tzu) > > "If you know yourself and know your enemy, > > won't fear the result of a thousand battles." > > (Sun Tzu) > > > > _______________________________________________________________________ > > Conhe�a o novo Cad�? - Mais r�pido, mais f�cil e mais preciso. > > Toda a web, 42 milh�es de p�ginas brasileiras e nova busca por imagens! > > http://www.cade.com.br > > > > > > -- > > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > >
