Re: 5 new messages in 2 topics - digest

3 views
Skip to first unread message

M e h u l

unread,
Jan 30, 2008, 5:19:27 AM1/30/08
to Linux...@googlegroups.com
I think you should use IPtables for this.

Try to search...you can block p2p application by using iptables.

Thanks.

On 1/30/08, Linuxcolor group <nor...@googlegroups.com> wrote:
>
> Linuxcolor
> http://groups.google.com/group/Linuxcolor?hl=en
>
> Linux...@googlegroups.com
>
> Today's topics:
>
> * About Squid Transparent Proxy Server - 4 messages, 3 authors
> http://groups.google.com/group/Linuxcolor/browse_thread/thread/640332975dff915f?hl=en
> * Get Information About Your BIOS / Server Hardware From a Shell Without
> Opening Chassis ( BIOS Decoder ) - 1 messages, 1 author
> http://groups.google.com/group/Linuxcolor/browse_thread/thread/b0da8afcec49db1c?hl=en
>
> ==============================================================================
> TOPIC: About Squid Transparent Proxy Server
> http://groups.google.com/group/Linuxcolor/browse_thread/thread/640332975dff915f?hl=en
> ==============================================================================
>
> == 1 of 4 ==
> Date: Tues, Jan 29 2008 1:28 am
> From: "Kazi Tariqul Islam"
>
>
> Dear Masum,
>
> Please use the following two lines in you squid.conf file:
>
> acl Safe_port 80
> http_access deny !Safe_port
>
> This ACL will only permit access to servers running on port 80. This is
> likely to interfere with your users' web browsing, because quite a number of
> legitimate web servers run on things like port 8000, port 8080, and even
> some others.
>
> So, it will not cause any problems for web servers running on the standard
> HTTP port 80, but it willcause problems if they use anything else. Whether
> this is important to you depends on the websites your users try to visit.
>
> Regards,
> Tariqul
> On 1/28/08, masum <masum...@yahoo.com> wrote:
> >
> > Dear All,
> > I need a Help about Squid Transparent Proxy. That is, I'm using Cento 5
> > with Transparent Proxy in my Network . I need to Block P2P software
> > download like, Kazza, Limeware , Emule Etc. I know IPP2P can handle this
> > thing. I tried to install IPP2P software in my Squid Box But fail to do
> > this. Could you please give me the proper solution about that problem or
> > need complete IPP2P install HOW TO. or any other solution. need help as
> > early as possible.
> >
> > masum
> >
> > ------------------------------
> > Looking for last minute shopping deals? Find them fast with Yahoo! Search.
> > >
> >
> > <http://us.rd.yahoo.com/evt=51734/*http://tools.search.yahoo.com/newsearch/category.php?category=shopping>
> >
> >
>
>
>
>
> == 2 of 4 ==
> Date: Tues, Jan 29 2008 2:40 am
> From: masum
>
>
> Dear Tariqul Bhaia,
> I all ready done this. But not working.
>
> Kazi Tariqul Islam <ktari...@gmail.com> wrote: Dear Masum,
>
> Please use the following two lines in you squid.conf file:
>
> acl Safe_port 80
> http_access deny !Safe_port
>
> This ACL will only permit access to servers running on port 80. This is likely to interfere with your users' web browsing, because quite a number of legitimate web servers run on things like port 8000, port 8080, and even some others.
>
> So, it will not cause any problems for web servers running on the standard HTTP port 80, but it willcause problems if they use anything else. Whether this is important to you depends on the websites your users try to visit.
>
> Regards,
> Tariqul
> On 1/28/08, masum <masum...@yahoo.com> wrote: Dear All,
> I need a Help about Squid Transparent Proxy. That is, I'm using Cento 5 with Transparent Proxy in my Network . I need to Block P2P software download like, Kazza, Limeware , Emule Etc. I know IPP2P can handle this thing. I tried to install IPP2P software in my Squid Box But fail to do this. Could you please give me the proper solution about that problem or need complete IPP2P install HOW TO. or any other solution. need help as early as possible.
>
> masum
>
>
> ---------------------------------
> Looking for last minute shopping deals? Find them fast with Yahoo! Search.
>
>
>
>
>
>
>
>
>
>
>
> ---------------------------------
> Never miss a thing. Make Yahoo your homepage.
>
>
>
> == 3 of 4 ==
> Date: Tues, Jan 29 2008 3:05 am
> From: Shahriar
>
>
> Dear masum bhai..
> IPP2P software work with iptables but remember that predifind iptables
> (install by rpm) not work , cause it has no support but It has to be
> compiled with netfilter support enabled.
> u must use source iptables with patch-o-matic support. another things
> squid has a ability to do this , Tariqul bhai's statement is ok but it
> has to be adjust in your squid.conf file. look u r squid.conf file allow
> and deny statement. ok no problem if u want the full squid.conf as an
> example i will send.
> bye..........
>
> On Jan 29, 2008 4:40 PM, masum <masum...@yahoo.com> wrote:
>
> > Dear Tariqul Bhaia,
> > I all ready done this. But not working.
> >
> > *Kazi Tariqul Islam <ktari...@gmail.com>* wrote:
> >
> > Dear Masum,
> >
> > Please use the following two lines in you squid.conf file:
> >
> > acl Safe_port 80
> > http_access deny !Safe_port
> >
> > This ACL will only permit access to servers running on port 80. This is
> > likely to interfere with your users' web browsing, because quite a number of
> > legitimate web servers run on things like port 8000, port 8080, and even
> > some others.
> >
> > So, it will not cause any problems for web servers running on the standard
> > HTTP port 80, but it willcause problems if they use anything else. Whether
> > this is important to you depends on the websites your users try to visit.
> >
> > Regards,
> > Tariqul
> > On 1/28/08, masum <masum...@yahoo.com> wrote:
> > >
> > > Dear All,
> > > I need a Help about Squid Transparent Proxy. That is, I'm using Cento 5
> > > with Transparent Proxy in my Network . I need to Block P2P software
> > > download like, Kazza, Limeware , Emule Etc. I know IPP2P can handle this
> > > thing. I tried to install IPP2P software in my Squid Box But fail to do
> > > this. Could you please give me the proper solution about that problem or
> > > need complete IPP2P install HOW TO. or any other solution. need help as
> > > early as possible.
> > >
> > > masum
> > > ------------------------------
> > > Looking for last minute shopping deals? Find them fast with Yahoo!
> > > Search.
> > >
> > > <http://us.rd.yahoo.com/evt=51734/*http://tools.search.yahoo.com/newsearch/category.php?category=shopping>
> > >
> >
> >
> > ------------------------------
> > Never miss a thing. Make Yahoo your homepage.<http://us.rd.yahoo.com/evt=51438/*http://www.yahoo.com/r/hs>
> >
> > >
> >
>
>
> --
> Thanks...&...Regards:
> =================================================
> "Everything Linux & Open Source"
> "Linux rules the heart of its users. This is enough a reason why one should
> embrace Linux."
> ================================================
> Md.Shahriar Kabir
> Sr.Network Engineer
> Information Technology Division
> TM International (BD) Ltd.
>
>
>
>
> == 4 of 4 ==
> Date: Tues, Jan 29 2008 10:48 pm
> From: masum
>
>
> Dear Shahriar Bhai,
> thanks for your mail. here is my squid.conf acl list. please find if here some modification.
>
> #Recommended minimum configuration:
> acl all src 0.0.0.0/0.0.0.0
> acl allowed src "/etc/squid/ip_list"
> acl snmpmanager src "/etc/squid/ip_list"
> acl snmppublic snmp_community public
> acl manager proto cache_object
> acl ftpdr proto FTP
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 # https
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-1030 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl Safe_ports port 8080
> acl CONNECT method CONNECT
> acl deny_ext urlpath_regex -i "/etc/squid/deny_ext"
> acl denied_domains dstdomain "/etc/squid/denied_domains.acl"
> acl url_ads url_regex "/etc/squid/banner-ads.acl"
> acl porndomains dstdomain "/etc/squid/urls"
>
> #Default:
> http_access deny deny_ext
> http_access deny url_ads
> http_access deny denied_domains
> http_access deny porndomains
> always_direct allow ftpdr
> http_reply_access deny audiovideo
> http_access allow allowed
> http_access deny all
> #
> #Recommended minimum configuration:
> #
> # Only allow cachemgr access from localhost
> http_access allow manager localhost
> http_access deny manager
> # Deny requests to unknown ports
> http_access deny !Safe_ports
> # Deny CONNECT to other than SSL ports
> http_access deny CONNECT !SSL_ports
>
>
> "Masum"
>
>
> Shahriar <linux...@gmail.com> wrote: Dear masum bhai..
> IPP2P software work with iptables but remember that predifind iptables (install by rpm) not work , cause it has no support but It has to be compiled with netfilter support enabled.
> u must use source iptables with patch-o-matic support. another things squid has a ability to do this , Tariqul bhai's statement is ok but it has to be adjust in your squid.conf file. look u r squid.conf file allow and deny statement. ok no problem if u want the full squid.conf as an example i will send.
> bye..........
>
> On Jan 29, 2008 4:40 PM, masum <masum...@yahoo.com> wrote:
> Dear Tariqul Bhaia,
> I all ready done this. But not working.
>
> Kazi Tariqul Islam <ktari...@gmail.com> wrote:
> Dear Masum,
>
> Please use the following two lines in you squid.conf file:
>
> acl Safe_port 80
> http_access deny !Safe_port
>
> This ACL will only permit access to servers running on port 80. This is likely to interfere with your users' web browsing, because quite a number of legitimate web servers run on things like port 8000, port 8080, and even some others.
>
> So, it will not cause any problems for web servers running on the standard HTTP port 80, but it willcause problems if they use anything else. Whether this is important to you depends on the websites your users try to visit.
>
> Regards,
> Tariqul
> On 1/28/08, masum <masum...@yahoo.com> wrote: Dear All,
> I need a Help about Squid Transparent Proxy. That is, I'm using Cento 5 with Transparent Proxy in my Network . I need to Block P2P software download like, Kazza, Limeware , Emule Etc. I know IPP2P can handle this thing. I tried to install IPP2P software in my Squid Box But fail to do this. Could you please give me the proper solution about that problem or need complete IPP2P install HOW TO. or any other solution. need help as early as possible.
>
> masum
>
>
> ---------------------------------
> Looking for last minute shopping deals? Find them fast with Yahoo! Search.
>
>
>
>
>
>
>
>
> ---------------------------------
> Never miss a thing. Make Yahoo your homepage.
>
>
>
>
>
>
>
>
> --
> Thanks...&...Regards:
> =================================================
> "Everything Linux & Open Source"
> "Linux rules the heart of its users. This is enough a reason why one should embrace Linux."
> ================================================
> Md.Shahriar Kabir
> Sr.Network Engineer
> Information Technology Division
> TM International (BD) Ltd.
>
>
>
>
>
> ---------------------------------
> Never miss a thing. Make Yahoo your homepage.
>
>
>
>
> ==============================================================================
> TOPIC: Get Information About Your BIOS / Server Hardware From a Shell Without
> Opening Chassis ( BIOS Decoder )
> http://groups.google.com/group/Linuxcolor/browse_thread/thread/b0da8afcec49db1c?hl=en
> ==============================================================================
>
> == 1 of 1 ==
> Date: Tues, Jan 29 2008 3:21 am
> From: Shahriar
>
>
> Dear all
> some time we need system information (like is there any empty slot for RAM
> upgrade).
> so here is a nice command *dmidecode *which may help u this type of
> information find
>
> pls go this url to know more and how it works..
> *
> *
> http://www.cyberciti.biz/tips/querying-dumping-bios-from-linux-command-prompt.html
>
>
> *
>
>
>
> *--
> Thanks...&...Regards:
> =================================================
> "Everything Linux & Open Source"
> "Linux rules the heart of its users. This is enough a reason why one should
> embrace Linux."
> ================================================
> Md.Shahriar Kabir
> Sr.Network Engineer
> Information Technology Division
> TM International (BD) Ltd.
>
>
>
>
> ==============================================================================
>
> You received this message because you are subscribed to the Google Groups "Linuxcolor"
> group.
>
> To post to this group, send email to Linux...@googlegroups.com or visit http://groups.google.com/group/Linuxcolor?hl=en
>
> To unsubscribe from this group, send email to Linuxcolor-...@googlegroups.com
>
> To change the way you get mail from this group, visit:
> http://groups.google.com/group/Linuxcolor/subscribe?hl=en
>
> To report abuse, send email explaining the problem to ab...@googlegroups.com
>
> ==============================================================================
> Google Groups: http://groups.google.com?hl=en
>


--
->Mehul<-

Reply all
Reply to author
Forward
0 new messages