From owner-freebsd-questions@FreeBSD.ORG  Thu May 20 08:24:45 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 57DF616A4CE
	for <freebsd-questions@freebsd.org>;
	Thu, 20 May 2004 08:24:45 -0700 (PDT)
Received: from mail.cableone.net (scanmail3.cableone.net [24.116.0.123])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E80C243D2F
	for <freebsd-questions@freebsd.org>;
	Thu, 20 May 2004 08:24:42 -0700 (PDT)
	(envelope-from kitbsdlists@HotPOP.com)
Received: from vixen42.24-119-122-191.cpe.cableone.net (unverified
	[24.119.122.191]) 
	by smail3.cableone.net (SurgeMail 1.5d2) with ESMTP id 21101258 
	for multiple; Thu, 20 May 2004 08:12:01 -0700
Date: Thu, 20 May 2004 08:22:07 -0500
From: Vulpes Velox <kitbsdlists@HotPOP.com>
To: Schizik <schizik@mail.ru>
Message-Id: <20040520082207.4eaa1127@vixen42.24-119-122-191.cpe.cableone.net>
In-Reply-To: <200405181404.53358.schizik@mail.ru>
References: <200405181404.53358.schizik@mail.ru>
X-Mailer: Sylpheed version 0.9.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.9)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Server: High Performance Mail Server - http://surgemail.com
cc: freebsd-questions@freebsd.org
Subject: Re: Firewalling Q
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 20 May 2004 15:24:45 -0000

On Tue, 18 May 2004 14:04:45 +0400
Schizik <schizik@mail.ru> wrote:

> 
> Greetings, gurus!
> 
> I do need to limit people from my internal LAN to access
> filesharing services like eDonkey, Mule, Kaza, etc
> 
> The problem is that it is can not be done with port ranges
> based ipfw rules, because ports can be changed by users
> in this programs.
> 
> What is I need some sort of setup which will analyze traffic
> going to and from people and based on recognition apply
> different firewall rules.
> 
> Can anyone recommend me an approach for this?

Look up info on what control ports and the like they all use. Block
those. ^_^