Blocking IRC traffic with iptables

[ianicr]

I've got a Redhat 9 box that does SNAT for the office. I've googled loads on this and tried loads of different ways to make our linux server block IRC traffic but all the ways just seem to block the server from doing IRC stuff. Has anyone got a quick iptables line to block the IRC ports?

Thanks

 

[thedaver]

Are you certain that the client PCs are unable to bypass your firewall? What symptoms are you basing your analysis upon. Tell us about the network a bit more.

Surfinbox.com Business Internet Services - National Dialup, DSL, T-1 and more.

http://www.surfinbox.com/business/

 

[ericbrunson]

They could always tunnel their irc traffic out through the firewall using ssh, etc.

 

[zeland]

Did you configure your firewall to be a "default ban all - explicit allow some"?


--== Anything can go wrong. It's just a matter of how far wrong it will go till people think its right. ==--

 

[w1nn3r]

Depending on your clients, it would be very difficult to block all IRC access since most networks have multiple ports used for IRC 6667, 6668, 6669, 7000. There's also the variable of IRC BNC's which can be bound to an unlimited amount of ports. your best bet is to attack the client computers directly. Remove installation abilities, give them only read access to all of C:\Program Files and only give write abilities to thier profile directories so they can still do thier work.