you can only block access to certain ports even using iptables. the http port is 80. so u can block all traffic for www.badsite.com port 80 only. this will keep othre services open.
--Dhruv Ahuja
******************************************************************************
there are many reason why i would'nt do it like this. .
Iptables would translate the blocksites.com to lets say W.X.Y.Z in that
hypothetically you are blocking off all domains which are hosted through
that interface. Not only lets say you just want to just block of a URL
which would be in most cases http but you still want to use SMTP, FTP
what then.
then how many sites would you like to block off this way.
Iptables is great temporary solution when somebody is carrying on a DoS
because it would block off those attacks on kernel level hopefully.
Privoxy and squidGuard are two solution I know where http sites can be
blocked off.
- [ilugd]: URL blocking using IPTABLES Dhruv Soi
- Re: [ilugd]: URL blocking using IPTABLES Supreet Sethi
- Re: [ilugd]: URL blocking using IPTABLES vivek
- Re: [ilugd]: URL blocking using IPTABLES Supreet Sethi
- Re: [ilugd]: URL blocking using IPTABLES Dhruv Ahuja
- Re: [ilugd]: URL blocking using IPTABLES Pankaj Kaushal
- Re: [ilugd]: URL blocking using IPTABLES Dhruv Ahuja
- Re: [ilugd]: URL blocking using IPTABLES Vineet Mehta
