Doesn't yahoo use the same machine (ip address) for login requests? If
you don't know it, run a sniffer on a machine and identify it.
Then, simply block the machine(s) using the dst acl directective.
Tim Rainier
"Winanjaya" <[EMAIL PROTECTED]>
02/19/2004 09:34 PM
Please respond to "Winanjaya"
To: "Henrik Nordstrom" <[EMAIL PROTECTED]>
cc: <[EMAIL PROTECTED]>
Subject: Re: [squid-users] Deny yahoo messager
below is my /etc/iptables
iptables -A INPUT -s 172.16.1.88--dport 80 -j ACCEPT
iptables -A INPUT -s 172.16.1.88--dport 25 -j ACCEPT
iptables -A INPUT -s 172.16.1.88--dport 110 -j ACCEPT
iptables -A INPUT -s 172.16.1.88-j DROP
iptables -A FORWARD -s 172.16.1.88--dport 80 -j ACCEPT
iptables -A FORWARD -s 172.16.1.88--dport 25 -j ACCEPT
iptables -A FORWARD -s 172.16.1.88--dport 110 -j ACCEPT
iptables -A FORWARD -s 172.16.1.88-j DROP
iptables -A FORWARD -i eth1 -j ACCEPT
but yahoomessenger is smarter, it will check the opened port and then use
it
..
I need advice .. thanks
