iptables question
Bill Horne
ehorne-zY4eFNvK5D9If6P1QZMOBw at public.gmane.org
Tue Oct 27 13:02:49 EDT 2009
Derek Atkins wrote:
> Dave Peters <gameslover987-/E1597aS9LQAvxtiuMwx3w at public.gmane.org> writes:
>
>
>> Is there anyway to use iptables blocking domain name not IP address?
>>
>> Example to block hotmail.com.
>>
>> I tried this iptables -A FORWARD -d hotmail.com -j REJECT and it won't work.
>>
>
> You might have better luck running a local DNS and hosting a master zone
> "hotmail.com" and sending all results to either NXDOMAIN or 127.0.0.1.
>
> Or use a browser plugin...
Or, just put hotmail.com into the source computer's HOSTS file: point it
to 127.0.0.1.
It's all a question of how much time and effort you're able to spend
dealing with exceptions.
Bill
--
E. William Horne
William Warren Consulting
Computer & Network Installations, Security, and Service
http://william-warren.com
781-784-7287
More information about the Discuss
mailing list