Re: [squid-users] Block Windows Live Messenger with Squid

Another URL,

http://blogs.techrepublic.com.com/networking/?p=308

On Wed, May 21, 2008 at 9:48 PM, Thomas Raef <traef_at_ebasedsecurity.com> wrote:
> Messenger will also use port 80. You'll need to do l7-filter for that. Or using squid, setup acls for the messenger mimetype which will catch it if it's coming through port 80, and then also block port 1863.
>
> I believe that's been covered before in this group so you may want to search the archives. Sorry, but I don't have the exact details in front of me.
>
> Thomas J. Raef
>
>
>> -----Original Message-----
>> From: Cassiano Martin [mailto:cassiano_at_atc-br.com.br]
>> Sent: Wednesday, May 21, 2008 11:05 AM
>> To: adnann5
>> Cc: squid-users_at_squid-cache.org
>> Subject: Re: [squid-users] Block Windows Live Messenger with Squid
>>
>> Messenger uses port 1863 tcp for communication, and some HTTPS SOAP
>> requests to M$ servers.
>> You need to block this port using iptables.
>>
>> iptables -A FORWARD -p tcp --dport 1863 -j DROP
>> iptables -A FORWARD -p tcp --sport 1863 -j DROP
>>
>>
>> adnann5 wrote:
>> > Hi Guys,
>> > I've a running a transparently working copy of squid 2.6 stable 19
>> on a
>> > Linux FC9 box.
>> > I wanted to block msn/windows live messenger through it, i've add
>> following
>> > code in my squid.conf
>> >
>> > acl msnmime req_mime_type ^application/x-msn-messenger
>> >
>> > acl msngw url_regex -i gateway.dll
>> >
>> > http_access deny msnmime
>> >
>> > http_access deny msngw
>> >
>> > but messenger is still signing in...
>> >
>> > Does any body have another solution?
>> >
>> >
>> > Regards
>> >
>>
>>
>> No virus found in this incoming message.
>> Checked by AVG.
>> Version: 7.5.524 / Virus Database: 269.23.21/1458 - Release Date:
>> 5/21/2008 7:21 AM
>>
>
> No virus found in this outgoing message.
> Checked by AVG.
> Version: 7.5.524 / Virus Database: 269.23.21/1458 - Release Date: 5/21/2008 7:21 AM
>
>

-- 
Thank you
Indunil Jayasooriya