Is there a way to monitor traffic coming in and out from a shorewall machine ?? I read there is no way to stop kazaa users from connecting, why ?? if you blacklist port 1214 (which is supposed to be kazaa''s port number) will it work ??
On Fri, 23 May 2003 07:37:49 -0700, dumdavin <dumdavin@klarocom.com> wrote:> Is there a way to monitor traffic coming in and out from > a shorewall machine ??What kind of monitoring do you want to do?> > I read there is no way to stop kazaa users from connecting, > why ?? if you blacklist port 1214 (which is supposed to be > kazaa''s port number) will it work ??No -- if port 1214 is blocked, Kazaa uses another one. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net
Tom Eastep writes:> On Fri, 23 May 2003 07:37:49 -0700, dumdavin <dumdavin@klarocom.com> > wrote: > >> Is there a way to monitor traffic coming in and out from >> a shorewall machine ?? > > What kind of monitoring do you want to do?User access, sites visited, etc. To evaluate where users are investing their time online.> >> >> I read there is no way to stop kazaa users from connecting, >> why ?? if you blacklist port 1214 (which is supposed to be >> kazaa''s port number) will it work ?? > > No -- if port 1214 is blocked, Kazaa uses another one. >Does Kazaa use a finite number of ports ?? What if you block them all ?? Is it possible to blacklist kazaa''s main IP or so ??
On Fri, 23 May 2003 07:58:23 -0700, dumdavin <dumdavin@klarocom.com> wrote:> Tom Eastep writes: > >> On Fri, 23 May 2003 07:37:49 -0700, dumdavin <dumdavin@klarocom.com> >> wrote: >> >>> Is there a way to monitor traffic coming in and out from >>> a shorewall machine ?? >> >> What kind of monitoring do you want to do? > > User access, sites visited, etc. > To evaluate where users are investing their time online. >If you want to do that kind of policing of your users, run Squid on the firewall as a transparent proxy.>> >>> >>> I read there is no way to stop kazaa users from connecting, >>> why ?? if you blacklist port 1214 (which is supposed to be >>> kazaa''s port number) will it work ?? >> >> No -- if port 1214 is blocked, Kazaa uses another one. >> > > Does Kazaa use a finite number of ports ?? > What if you block them all ??I''m getting out of this Kazaa discussion -- I''m only reporting what I''ve read on other lists; if you want to learn all about Kazaa and what you (can''t) do about it, I suggest looking at the netfilter users list archives at http://www.netfilter.org. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net
Tom Eastep writes:> On Fri, 23 May 2003 07:58:23 -0700, dumdavin <dumdavin@klarocom.com> > wrote: > >> Tom Eastep writes: >> >>> On Fri, 23 May 2003 07:37:49 -0700, dumdavin <dumdavin@klarocom.com> >>> wrote: >>> >>>> Is there a way to monitor traffic coming in and out from >>>> a shorewall machine ?? >>> >>> What kind of monitoring do you want to do? >> >> User access, sites visited, etc. >> To evaluate where users are investing their time online. >> > > If you want to do that kind of policing of your users, run Squid on the > firewall as a transparent proxy.Thanks, I''ll read about it.> >>> >>>> >>>> I read there is no way to stop kazaa users from connecting, >>>> why ?? if you blacklist port 1214 (which is supposed to be >>>> kazaa''s port number) will it work ?? >>> >>> No -- if port 1214 is blocked, Kazaa uses another one. >>> >> >> Does Kazaa use a finite number of ports ?? >> What if you block them all ?? > > I''m getting out of this Kazaa discussion -- I''m only reporting what I''ve > read on other lists; if you want to learn all about Kazaa and what you > (can''t) do about it, I suggest looking at the netfilter users list > archives at http://www.netfilter.org. >Thanks, if any of you want to read a little about this go to http://www.vmlinuz.ca/archives/security-basics/2002-11/msg00076.html