Find the answer to your Linux question:
Results 1 to 4 of 4
Re: stuck on one website loading though iptables whitelist OK so I have created iptable whitelist with everything that was trying to load while opening ubuntuforums.org linuxforums.org binweevils.com moshimonsters.com # ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Aug 2011
    Location
    UK NE
    Posts
    7

    Question stuck on one website loading though iptables whitelist


    Re: stuck on one website loading though iptables whitelist

    OK so I have created iptable whitelist with everything that was trying to load while opening
    ubuntuforums.org
    linuxforums.org
    binweevils.com
    moshimonsters.com

    # Generated by iptables-save v1.4.4 on Wed Aug 24 08:58:59 2011
    *filter
    :INPUT ACCEPT [265:37693]
    :FORWARD ACCEPT [0:0]
    :OUTPUT ACCEPT [873:121068]
    :whitelist - [0:0]
    -A INPUT -j whitelist
    -A INPUT -p tcp -m multiport --sports 80,443 -j DROP
    -A whitelist -s 91.189.94.12/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 174.132.123.98/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 213.229.92.110/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 98.129.229.140/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 158.36.191.10/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 46.137.78.255/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 74.121.176.40/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 62.24.179.33/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 62.24.179.19/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 213.229.106.153/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 184.73.185.69/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 184.73.184.214/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 184.73.184.231/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 184.72.218.16/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 184.73.184.196/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 184.73.184.162/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 184.73.184.167/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 184.73.185.83/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 77.238.187.43/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 77.238.187.39/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 93.188.128.44/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 93.188.128.18/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.229.147/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.229.104/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.229.99/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 173.203.57.39/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 74.125.230.124/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 93.184.220.39/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.103/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.106/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.105/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.99/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.147/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.104/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.143.95/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 64.27.17.200/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 50.19.211.87/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 62.24.179.40/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 62.24.179.49/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 213.229.92.110/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.103/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.106/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.99/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.104/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.147/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.146.105/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.229.104/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.229.147/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 209.85.229.99/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 208.94.148.13/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 208.80.124.13/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 208.80.126.13/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    -A whitelist -s 213.229.92.110/32 -p tcp -m multiport --sports 80,443 -j ACCEPT
    COMMIT
    # Completed on Wed Aug 24 08:58:59 2011

    the problem is I cant get moshimonsters to load up, keep getting
    The connection has timed out
    The server at moshimonsters.com is taking too long to respond.

    * The site could be temporarily unavailable or too busy. Try again in a few
    moments.

    * If you are unable to load any pages, check your computer's network
    connection.

    * If your computer or network is protected by a firewall or proxy, make sure
    that Firefox is permitted to access the Web.

    can anyone help with how to allow all of what is trying to load on moshimonsters, i've tried whois and added the servers to the whitelist but still no joy.

    is there a way to show all that is trying to run in the browser and what websites the browser is trying access in order to load moshim. other than looking at the bottom left as it happens.

    also seem to be having trouble with weevils too.
    thanks
    think i might of found something of use but still would like to here from others that have got round this sort of problem before tools.pingdom.com

  2. #2
    Linux Guru Lazydog's Avatar
    Join Date
    Jun 2004
    Location
    The Keystone State
    Posts
    2,672
    First off your firewall is a NIGHTMARE to maintain. Why on earth would you want to do this or even think you have to do this?

    Are these site trying to connect to your system or are you trying to connect to then?
    If you are trying to connect to them then they are the DESTINATION not the SOURCE.

    Some LIGHT READING

    Regards
    Robert

    Linux
    The adventure of a life time.

    Linux User #296285
    Get Counted

  3. #3
    Just Joined!
    Join Date
    Aug 2011
    Location
    UK NE
    Posts
    7
    thankyou will give it read over.

    i am hoping to block access to all websites but say moshimonsters and weebles, with the option of adding more in the future if so needed.

    i am an absolute beginner so makes sense to post it here.

    I have looked through other posts but as I am so green i dont really no what to search for in the first place.

    so far i have come accross terminal code, gnome nanny, Dansguardian and various combinations with squid.
    can u think of anymore?? in order to make the computer safe for my kids. it will only be used for games and moshi and weebles.

    what i really would like is help to narrow down my options.
    then help on how to.
    thank you.

  4. #4
    Linux Guru Lazydog's Avatar
    Join Date
    Jun 2004
    Location
    The Keystone State
    Posts
    2,672
    I would suggest looking into setting up a proxy for blocking web sites. It should be a lot easier then trying to do the same with iptables.

    Regards
    Robert

    Linux
    The adventure of a life time.

    Linux User #296285
    Get Counted

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •