bimal pandit wrote:
>Dear Robert,
>
>use this
>
>acl block_yahoo url_regex yahoo
>
>http_access deny block_yahoo
>
>hope this will help
>
>
>
well i have successfully block yahoo with iptables + squid working togather
here is part of my squid.conf
#start
##### Block AOL and YAHOO
acl aolyahoo dstdomain login.oscar.aol.com
acl aolyahoo dstdomain pager.yahoo.com
acl aolyahoo dstdomain shttp.msg.yahoo.com
acl aolyahoo dstdomain update.messenger.yahoo.com
acl aolyahoo dstdomain update.pager.yahoo.com
http_access deny aolyahoo
##### Mime blocking
##### Blocking reqested mine types
acl mimeblockq req_mime_type ^application/x-msn-messenger$
acl mimeblockq req_mime_type ^app/x-hotbar-xip20$
acl mimeblockq req_mime_type ^application/x-icq$
acl mimeblockq req_mime_type ^.*AIM.*
acl mimeblockq req_mime_type ^application/x-comet-log$
acl mimeblockq req_mime_type ^application/x-pncmd$
##### Blocking sent mime types
acl mimeblockp rep_mime_type ^application/x-msn-messenger$
acl mimeblockp rep_mime_type ^app/x-hotbar-xip20$
acl mimeblockp rep_mime_type ^application/x-icq$
acl mimeblockp rep_mime_type ^.*AIM.*
acl mimeblockp rep_mime_type ^.*AIM/HTTP
acl mimeblockp rep_mime_type ^application/x-comet-log$
acl mimeblockp rep_mime_type ^application/x-pncmd$
##### Setting Access controls
http_access deny mimeblockq
http_reply_access deny mimeblockp
#end
with that squid will block if it find yahoo or any related try to
connect using proxy the anoying part is that yahoo will try other port
open on the systems
so that where my iptables work, what i do is I block ALL port from LAN
using IPTABLES and only allow them to use the internet using squid
-- Nor Idzuwan Mohammad Dr Nik & Associates SDN BHD No. 22-2, Jalan 1/2F Kuala Lumpur Satelit Centre(KLSC) Section 5, Pusat Bandar Wangsa Maju 53300 Kuala Lumpur. Tel: (603) 41458888 ext: 8618 Fax: (603) 41426886 email: zuan@drnik.com.myReceived on Mon Aug 30 2004 - 01:58:41 MDT
This archive was generated by hypermail pre-2.1.9 : Wed Sep 01 2004 - 12:00:03 MDT