Kazaa and iptables

Justin Bennett justin.bennett at dynabrade.com
Wed Apr 23 08:49:01 EDT 2003


I think I'm gonna need to instpect the packets and block them.


Mark Musone wrote:

>Heh...you're gonna be chasing it for a while :^) it port hops
>around..you can't just filter out ports :^)
>
>
>
>-----Original Message-----
>From: owner-nflug at nflug.org [mailto:owner-nflug at nflug.org] On Behalf Of
>Justin Bennett
>Sent: Wednesday, April 23, 2003 8:17 AM
>To: nflug at nflug.org
>Subject: Re: Kazaa and iptables
>
>I tried blocking 1241 It still works. I see stuff on 1697, I'll try 
>blocking that. I blocked that now it's on 1699. It seems to keep moving 
>the ports to an open one.
>
>
>Justin Bennett wrote:
>
>  
>
>>I'm loading it up now, I'll get out the good old packet sniffer and 
>>see what I can come up with.
>>
>>
>>
>>Justin Bennett wrote:
>>
>>    
>>
>>>I found some info, they say to block 1214, but others say kazaa just 
>>>uses a diffrent port if that one is blocked. I don't know enough 
>>>about how Kazaa works to know if thats true. If it connects to a 
>>>central server or not (like napster) first if so maybe blocking that 
>>>can stop it... Let me know what you find I'll keep looking too.
>>>
>>>Thanks
>>>Justin
>>>
>>>
>>>Cyber Source wrote:
>>>
>>>      
>>>
>>>>I took a quick look into our shorewall config here because I could
>>>>        
>>>>
>have
>  
>
>>>>sworn I saw a commented out section for Kazaa in there but I
>>>>        
>>>>
>couldn't
>  
>
>>>>find it this morning. I was looking for the port number for you and 
>>>>even
>>>>in a quick search on Google, found no quick location of the port
>>>>        
>>>>
>Kazaa
>  
>
>>>>uses. If I find it I will pass it on.
>>>>On Wed, 2003-04-23 at 07:31, Justin Bennett wrote:
>>>> 
>>>>
>>>>        
>>>>
>>>>>A buddy of mine asked me to block Kazaa for him on his Frat's dsl 
>>>>>connection, he has a linux fw/router using iptables. I have not 
>>>>>used kazaa anyone have a rule to block it.
>>>>>
>>>>>Thanks
>>>>>Justin
>>>>>  
>>>>>          
>>>>>
>>>>        
>>>>
>
>  
>

-- 
Justin Bennett
Network Administrator
RHCE (Redhat Certified Linux Engineer)
Dynabrade, Inc.
8989 Sheridan Dr.
Clarence, NY 14031
 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.nflug.org/pipermail/nflug/attachments/20030423/ffb1d093/attachment-0001.html


More information about the nflug mailing list