block ip automatically

[virdri]

hi there! i'm trying to block ultrasurf and one solution i've comeup with is to block port https of the network ip accessing ultrasurf. whenever someone accesses ultrasurf there is a connection in the begning with ips that always start with 65.49.......:443 and if there were to be a way I could detect automatically which internal ip is accessing 65.49......433 then automatically block that ip with iptables perhaps. blocking 65.49... doesn't work since ultrasurf has thousands of other ips. it'd only be practical to block internal ip or just https of internal ip. I've checked a lot of times and each time when someone open ultrasurf first time the ip with which the connect is made from internet ip is always 65.49...:433 so if at that time the port 443 is block i think it could work.

one drastic way could be blocking https(443) port and create whitelist for sites like gmail, hotmail, yahoo, etc. but I dont know how to do that since gmail and sites like such have a lot of ips too so if someone can tell me how to do that i'd also appreaciate.

please help.

thanks a lot.

[dennisraj]

better to use proxy for internet connectivity

[virdri]

better to use proxy for internet connectivity

I have squid installed but https port doesn't go through it, do you know how to force https traffic to pass through squid? thanks