07-24-2007, 06:44 PM
First of all you need to have a running copy of squid and you make transparent for your local
LAN. Add this to your squid.conf:
LAN. Add this to your squid.conf:
Quote:
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
And this to your IPTABLES:
Quote:
iptables -t nat -A PREROUTING -i eth1 -p tcp –dport 80 -j REDIRECT –to-port 3128
iptables -A OUTPUT -j ACCEPT -m state –state NEW,ESTABLISHED,RELATED
-o eth0 -p tcp –dport 80
iptables -A OUTPUT -j ACCEPT -m state –state NEW,ESTABLISHED,RELATED
-o eth0 -p tcp –dport 80
…where eth0 is your external interface and eth1 your internal.
To block AOL IM and ICQ:
Quote:
# iptables -A FORWARD –dport 5190 -j DROP
# iptables -A FORWARD -d login.oscar.aol.com -j DROP
# iptables -A FORWARD -d login.oscar.aol.com -j DROP
To block MSN messenger:
Quote:
# iptables -A FORWARD -p TCP –dport 1863 -j DROP
# iptables -A FORWARD -d 64.4.13.0/24 -j DROP
# iptables -A FORWARD -d 64.4.13.0/24 -j DROP
Kaaza Blocking
Quote:
iptables -t nat -A POSTROUTING -s 150.100.16.0/255.255.240.0 -d ! 150.100.16.0/255.255.240.0 –dport 1214 –j DROP
Add following in squid.conf file
Quote:
# Yahoo Messenger service
acl Yahoo-Mess dst 24.71.200.68/32 204.71.202.73/32 204.71.200.0/24
204.71.177.35/32 204.71.202.59/32 204.71.202.58/32 216.115.105.214/32
204.71.201.47/32 204.71.201.48/32 216.115.105.215/32
216.136.172.221/32 *.msg.yahoo.com
http_access deny Yahoo-Mess
acl Yahoo-Mess dst 24.71.200.68/32 204.71.202.73/32 204.71.200.0/24
204.71.177.35/32 204.71.202.59/32 204.71.202.58/32 216.115.105.214/32
204.71.201.47/32 204.71.201.48/32 216.115.105.215/32
216.136.172.221/32 *.msg.yahoo.com
http_access deny Yahoo-Mess
Quote:
# Trillian service
acl Trillian-Mess dst 66.216.70.167/32
http_access deny Trillian-Mess
acl Trillian-Mess dst 66.216.70.167/32
http_access deny Trillian-Mess