From: Alex Boag-Munroe (ajbm@ntlworld.com)
Date: Mon Dec 04 2000 - 13:30:45 PST
Try changing it to:
$IPCHAINS -A output -p tcp -s 192.168.1.0/24 -d 0.0.0.0/0 6665:6669 -j DENY
$IPCHAINS -A output -p udp -s 192.168.1.0/24 -d 0.0.0.0/0 6665:6669 -j DENY
Also, IRC servers use 7000 and 7777 as well. So add:
$IPCHAINS -A output -p tcp -s 192.168.1.0/24 -d 0.0.0.0/0 7000 -j DENY
$IPCHAINS -A output -p udp -s 192.168.1.0/24 -d 0.0.0.0/0 7000 -j DENY
$IPCHAINS -A output -p tcp -s 192.168.1.0/24 -d 0.0.0.0/0 7777 -j DENY
$IPCHAINS -A output -p udp -s 192.168.1.0/24 -d 0.0.0.0/0 7777 -j DENY
Try that :)
Alex
On Monday 04 December 2000 19:57, you wrote:
> Hello ALL,
> I need to block IRC (6665 - 6669) from my internal network (the boss
> doesn't like people goofing off). I added the following to the pmfirewall
> init file but users can still access the chat rooms....
>
> $IPCHAINS -A output -p tcp -s 192.168.1.0/24 -d 0.0/0 6665:6669 -j
> DENY
> $IPCHAINS -A output -p udp -s 192.168.1.0/24 -d 0.0/0 6665:6669 -j
> DENY
>
>
> What am I missing?
>
> Vernon Fort
> Jobsoft Design & Development
>
>
> ***************************************************************************
>* * To UNSUBSCRIBE from the list, send a message with "unsubscribe
> pmfirewall" * in the message body to majordomo@pointman.org. Please direct
> other * questions, comments, or problems to pmfirewall-owner@pointman.org.
> *
> * Need answers fast? Check the list archive located at:
> * http://www.pointman.org/PMFirewall/list-archive/
> *
-- -- Alex **************************************************************************** * To UNSUBSCRIBE from the list, send a message with "unsubscribe pmfirewall" * in the message body to majordomo@pointman.org. Please direct other * questions, comments, or problems to pmfirewall-owner@pointman.org. * * Need answers fast? Check the list archive located at: * http://www.pointman.org/PMFirewall/list-archive/ *
This archive was generated by hypermail 2b29 : Sun Jun 10 2001 - 02:38:15 PDT