forked from extern/shorewall_code
55 lines
1.9 KiB
XML
55 lines
1.9 KiB
XML
|
<?xml version="1.0" encoding="UTF-8"?>
|
||
|
<!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
|
||
|
"http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
|
||
|
<article id="Shorewall_and_Kazaa">
|
||
|
<articleinfo>
|
||
|
<title>Kazaa Filtering</title>
|
||
|
|
||
|
<authorgroup>
|
||
|
<author>
|
||
|
<firstname>Tom</firstname>
|
||
|
|
||
|
<surname>Eastep</surname>
|
||
|
</author>
|
||
|
</authorgroup>
|
||
|
|
||
|
<pubdate>2003-10-22</pubdate>
|
||
|
|
||
|
<copyright>
|
||
|
<year>2003</year>
|
||
|
|
||
|
<holder>Thomas M. Eastep</holder>
|
||
|
</copyright>
|
||
|
|
||
|
<legalnotice>
|
||
|
<para>Permission is granted to copy, distribute and/or modify this
|
||
|
document under the terms of the GNU Free Documentation License, Version
|
||
|
1.2 or any later version published by the Free Software Foundation; with
|
||
|
no Invariant Sections, with no Front-Cover, and with no Back-Cover
|
||
|
Texts. A copy of the license is included in the section entitled "<ulink
|
||
|
url="GnuCopyright.htm">GNU Free Documentation License</ulink>".</para>
|
||
|
</legalnotice>
|
||
|
</articleinfo>
|
||
|
|
||
|
<section>
|
||
|
<title>ftwall</title>
|
||
|
|
||
|
<para>Beginning with Shorewall version 1.4.8, Shorewall can interface to
|
||
|
ftwall. <emphasis role="bold">ftwall</emphasis> is part of the p2pwall
|
||
|
project and is a user-space filter for applications based on the "Fast
|
||
|
Track" peer to peer protocol. Applications using this protocol include
|
||
|
Kazaa, KazaaLite, iMash and Grokster.</para>
|
||
|
|
||
|
<para>To filter traffic from your 'loc' zone with ftwall, you
|
||
|
insert the following rules <emphasis role="bold">near the top</emphasis>
|
||
|
of your /etc/shorewall/rules file (before and ACCEPT rules whose source is
|
||
|
the 'loc' zone).</para>
|
||
|
|
||
|
<programlisting>QUEUE loc net tcp
|
||
|
QUEUE loc net udp
|
||
|
QUEUE loc fw udp</programlisting>
|
||
|
|
||
|
<para>Now simply configure ftwall as described in the ftwall documentation
|
||
|
and restart Shorewall.</para>
|
||
|
</section>
|
||
|
</article>
|