On Saturday 13 September 2008 23:36:13 pk wrote:
Hello,
I am using shorewall on my local computer (the same I'm surfing the web
with). My skills with iptables are not really good and my understanding
of networking also has some holes in it... However, I'm trying to
prevent firefox from
Alan McKinnon wrote:
That's always going to be problematic. Firefox does not know that you have
firewalled that address, so will continue doing exactly what it always did -
send a SYN and wait for the response.
So you'll need to tell Firefox that that IP is banned, in which case you don't
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Saturday 13 September 2008 23:36:13 pk wrote:
Hello,
I am using shorewall on my local computer (the same I'm surfing the web
...
original site) shows up. While trying to block the additional ip address
with both iptables -A INPUT -s -j
Michal 'vorner' Vaner wrote:
DROP causes the packet to get blackholed without a trace. It sometimes
happens to packets on internet so it is usual to try again and again
until it succeeds or timeout (usually in tens of seconds) is reached.
That was the intention. The site in question is my
Alan McKinnon wrote:
On Saturday 13 September 2008 23:36:13 pk wrote:
Hello,
I am using shorewall on my local computer (the same I'm surfing the web
with). My skills with iptables are not really good and my understanding
of networking also has some holes in it... However, I'm trying to
On Sun, 14 Sep 2008 11:04:47 +0200, pk wrote:
That was the intention. The site in question is my banks site. And they
have a marketing survey company linked to their site which I want to
hide from. If I want to use the banks internet services, which I pay
for, I don't want third parties to
Tony Stohne wrote:
HTTP requests are sent over TCP, so try a REJECT with TCP reset instead.
Something like this should do the trick, since the connection would be reset
more or less instantly avoiding the timeout:
iptables -A INPUT -s -p tcp -j REJECT --reject-with tcp-reset
iptables -A
On Sun, 14 Sep 2008 13:25:45 +0200, pk wrote:
Ok, good to know. I tried something simpler; putting the domain in
/etc/hosts pointing to 127.0.0.1 (as suggested by Neil Bothwick).
Incidentally, you can get a file to add to your /etc/hosts that blocks all
sorts of ad and popup server from
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
pk said the following on 2008-09-14 13:25:
Ok, good to know. I tried something simpler; putting the domain in
/etc/hosts pointing to 127.0.0.1 (as suggested by Neil Bothwick). But
I'll keep this in mind for the future. Thanks for the input!
Tony Stohne wrote:
Yes, putting the domain/IP address in the host file works, but has the
negative side effect of being slower (at least if your host file is big.
Parsing a big hosts file slows down networking overall because of the parsing
process. If the file is small/short it's not a big
On Sunday 14 September 2008 11:04:47 pk wrote:
That was the intention. The site in question is my banks site. And they
have a marketing survey company linked to their site which I want to
hide from. If I want to use the banks internet services, which I pay
for, I don't want third parties to
Hello,
I am using shorewall on my local computer (the same I'm surfing the web
with). My skills with iptables are not really good and my understanding
of networking also has some holes in it... However, I'm trying to
prevent firefox from accessing a third party site; I'm logging onto a
site
pk wrote:
Hello,
I am using shorewall on my local computer (the same I'm surfing the
web with). My skills with iptables are not really good and my
understanding of networking also has some holes in it... However, I'm
trying to prevent firefox from accessing a third party site; I'm
logging
Hello
On Sat, Sep 13, 2008 at 11:36:13PM +0200, pk wrote:
I am using shorewall on my local computer (the same I'm surfing the web
with). My skills with iptables are not really good and my understanding of
networking also has some holes in it... However, I'm trying to prevent
firefox from
Hello,
I am using shorewall on my local computer (the same I'm surfing the web
with). My skills with iptables are not really good and my understanding
of networking also has some holes in it... However, I'm trying to
prevent firefox from accessing a third party site; I'm logging onto a
site
15 matches
Mail list logo