Doesn't yahoo use the same machine (ip address) for login requests? If you don't know it, run a sniffer on a machine and identify it. Then, simply block the machine(s) using the dst acl directective.
Tim Rainier "Winanjaya" <[EMAIL PROTECTED]> 02/19/2004 09:34 PM Please respond to "Winanjaya" To: "Henrik Nordstrom" <[EMAIL PROTECTED]> cc: <[EMAIL PROTECTED]> Subject: Re: [squid-users] Deny yahoo messager below is my /etc/iptables iptables -A INPUT -s 172.16.1.88--dport 80 -j ACCEPT iptables -A INPUT -s 172.16.1.88--dport 25 -j ACCEPT iptables -A INPUT -s 172.16.1.88--dport 110 -j ACCEPT iptables -A INPUT -s 172.16.1.88-j DROP iptables -A FORWARD -s 172.16.1.88--dport 80 -j ACCEPT iptables -A FORWARD -s 172.16.1.88--dport 25 -j ACCEPT iptables -A FORWARD -s 172.16.1.88--dport 110 -j ACCEPT iptables -A FORWARD -s 172.16.1.88-j DROP iptables -A FORWARD -i eth1 -j ACCEPT but yahoomessenger is smarter, it will check the opened port and then use it .. I need advice .. thanks