rlocone Posted August 1, 2013 Share Posted August 1, 2013 Hello All, I read the below article and thought... Why not implement a search filter on my network. http://news.yahoo.com/-police-and-fbi-deny-alleged-search-of-new-york-home-stemming-from-journalist%E2%80%99s-web-searches--200309173.html Is there a way to put something in place that would block keywords from leaving my network. I know OpenDNS blocks a lot of stuff but not this. Maybe there is something I can put in DD-WRT to accomplish the job. I have kids and sometimes kids don't always use their heads. Thanks for your time & attention, Quote Link to comment Share on other sites More sharing options...
Mr-Protocol Posted August 1, 2013 Share Posted August 1, 2013 http://www.dd-wrt.com/wiki/index.php/Transparent_web_proxy If you really want to make your head hurt, there is a way to search for keywords using iptables and just drop those requests. It's been a long time since I've looked into that though. This was something I was working on a while ago to try and block bittorrent traffic back in June 2010 lol. I was running a tor exide node to have users run torrents through me while I blocked them. Then I got angry letters from my ISP about spam being sent from me, but it was tor users :(. Ah well, was a fun experiment. http://forums.hak5.org/index.php?/topic/16731-blocking-bittorrent-traffic echo This is to block known signatures of BitTorrent activity. echo Written by\: Mr\-Protocol sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /announce?info_hash=" -j DROP sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /announce?info_hash=" -j DROP echo Blocking\: \"GET \/announce?info_hash=\" sleep 1 sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /scrape?info_hash=" -j DROP sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /scrape?info_hash=" -j DROP echo Blocking\: \"GET \/scrape?info_hash=\" sleep 1 sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /announce.php?info_hash=" -j DROP sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /announce.php?info_hash=" -j DROP echo Blocking\: \"GET \/announce.php?info_hash=\" sleep 1 sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /scrape.php?info_hash=" -j DROP sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /scrape.php?info_hash=" -j DROP echo Blocking\: \"GET \/scrape.php?info_hash=\" sleep 1 sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /announce.php?passkey=" -j DROP sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /announce.php?passkey=" -j DROP echo Blocking\: \"GET \/announce.php?passkey=\" sleep 1 sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /scrape.php?passkey=" -j DROP sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /scrape.php?passkey=" -j DROP echo Blocking\: \"GET \/scrape.php?passkey=\" sleep 1 sudo iptables -t raw -A OUTPUT -m string --algo bm --hex-string "|13426974546f7272656e742070726f746f636f6c|" -j DROP sudo iptables -t raw -A PREROUTING -m string --algo bm --hex-string "|13426974546f7272656e742070726f746f636f6c|" -j DROP echo Blocking\: \"\(0x13\) \+ \"BitTorrent protocol\" Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.