Hi, I'm trying to block msn messenger for PC 192.168.1.25 and doesn't work.
This is the rule:
/ip firewall rule forward add src-address=192.168.1.25/32 dst-address=0.0.0.0/0 content=gateway.messenger.hotmail.com,login.gateway.hotmail.com,login.live.com,messenger.msn.com,webmessenger.msn,passport.net action=drop log=yes comment="MS Messenger Block" disabled=no
What could it be ?, please help me.
Thanks a lot.
I use this rule:
[admin@] ip firewall mangle<SAFE> print
Flags: X - disabled, I - invalid, D - dynamic
0 protocol=tcp tcp-options=syn-only action=passthrough tcp-mss=1452
1 ;;; Permito Messeger
src-address=10.0.0.79/32 dst-address=:1863 action=accept mark-connection=CHAT-OK
2 ;;; Marco Paquetes destino Login Messenger - Puerto 1863
src-address=10.0.0.0/24 dst-address=:1863 protocol=tcp action=accept mark-connection=CHAT
3 ;;; Marco Paquetes destino Login Messenger - Puerto 5050
src-address=10.0.0.0/24 dst-address=:5050 protocol=tcp action=accept mark-connection=CHAT
4 ;;; Marco Paquetes destino Login Messenger - URL Filtering
src-address=10.0.0.0/24 dst-address=:5050 protocol=tcp
content=gateway.messenger.hotmail.com,login.gateway.hotmail.com,login.live.com,
messenger.msn.com,webmessenger.msn,passport.net
action=accept mark-connection=CHAT
[admin@] <SAFE> /ip firewall rule forward print
6 ;;; Permito MSN
src-address=10.0.0.79/32 connection=CHAT-OK action=accept
7 ;;; Bloqueo Paquetes Destino MSN marcados en el mangle
connection=CHAT action=drop log=yes
It seems that works OK.
Regards
[admin@] ip firewall mangle<SAFE> print
Flags: X - disabled, I - invalid, D - dynamic
0 protocol=tcp tcp-options=syn-only action=passthrough tcp-mss=1452
1 ;;; Permito Messeger
src-address=10.0.0.79/32 dst-address=:1863 action=accept mark-connection=CHAT-OK
2 ;;; Marco Paquetes destino Login Messenger - Puerto 1863
src-address=10.0.0.0/24 dst-address=:1863 protocol=tcp action=accept mark-connection=CHAT
3 ;;; Marco Paquetes destino Login Messenger - Puerto 5050
src-address=10.0.0.0/24 dst-address=:5050 protocol=tcp action=accept mark-connection=CHAT
4 ;;; Marco Paquetes destino Login Messenger - URL Filtering
src-address=10.0.0.0/24 dst-address=:5050 protocol=tcp
content=gateway.messenger.hotmail.com,login.gateway.hotmail.com,login.live.com,
messenger.msn.com,webmessenger.msn,passport.net
action=accept mark-connection=CHAT
[admin@] <SAFE> /ip firewall rule forward print
6 ;;; Permito MSN
src-address=10.0.0.79/32 connection=CHAT-OK action=accept
7 ;;; Bloqueo Paquetes Destino MSN marcados en el mangle
connection=CHAT action=drop log=yes
It seems that works OK.
Regards