rochainf escreveu:Amigos depois que implantei o SQUID+DansGuardian e configurei acesso livre da rede ao Hotmail e MSN, pois a empresa utiliza para se comunicar com cientes e fornecedores, mas agora o pessoal não consegue fazer download dos anexos, não importando a extensão do anexo, alguem já passou por isso???
0-59/10 * * * * /etc/init.d/squid cachedir #Limpeza diaria cache Squid
live.com
hotmail.com
msn.com
microsoft.com
# Inicio HOTMAIL e MSN
live.com
mail.live.com
hotmail.com
nsatc.net
passport.net
verisign.com
wlxrs.com
microsoft.com
# Fim HOTMAIL e MSN
spc.org.br
bb.com.br
caixa.gov.br
itau.com.br
bradesco.com.br
java.com
datahouse.com.br
# Bloquear TWITTER para toda rede
iptables -A FORWARD -p tcp -s 192.168.0.0/24 -d 199.59.148.0/22 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.0.0/24 -d 199.59.148.0/22 --dport 443 -j REJECT
# Bloquear ORKUT para toda rede
iptables -A FORWARD -p tcp -s 192.168.0.0/24 -d 74.125.0.0/16 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.0.0/24 -d 74.125.0.0/16 --dport 443 -j REJECT
# Bloquear FACEBOOK para toda rede
iptables -A FORWARD -p tcp -s 192.168.0.0/24 -d 66.220.144.0/20 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.0.0/24 -d 66.220.144.0/20 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.0.0/24 -d 69.171.224.0/19 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.0.0/24 -d 69.171.224.0/19 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.0.0/24 -d 69.171.224.0/19 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.0.0/24 -d 69.171.224.0/19 --dport 443 -j REJECT
# Liberar HOTMAIL e MSN
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d hotmail.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d login.live.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d mail.live.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d login.live.com.nsatc.net --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d accountservices.msn.com.nsatc.net --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d accountservices.passport.net --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d secure.shared.live.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d signup.live.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d security.live.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d extended-validation-ssl.verisign.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d secure.wlxrs.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d loginnet.passport.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d gateway.messenger.hotmail.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d contacts.msn.com --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d contacts.msn.com --dport 443 -j ACCEPT
iptables -A FORWARD -s -p tcp 192.168.0.0/24 --dport 1863 -j ACCEPT
# Novo HOTMAIL 11-09-2011
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d 65.54.186.0/24 --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d 65.54.204.0/24 --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d 65.54.165.0/24 --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d 216.246.75.0/24 --dport 443 -j ACCEPT
iptables -A FORWARD -i -p tcp 192.168.0.0/24 -d 173.222.141.0/24 --dport 443 -j ACCEPT
Ratimam escreveu:manda uma mensagem privada que te add no msn
Voltar para BrazilFW 3.x - Ajuda em Geral
Usuários navegando neste fórum: Nenhum usuário registrado e 13 visitantes