> I can't help Jose in using an offsite Gateway but I have an idea but
> need the groups help/comments for those with a similar problem and an
> onsite Linux router/gateway.
> I just upgraded my Lenux box and am looking at packet filtering with
> iptables. Seems to me one could turn chat on and off (an time or limit)
> by machine by simply changing the rule set. I want to try it. What
> protocol is chat? Need that to configure.
w/o looking at your post mike i said the same thing below in respone to
jose's question. He implies that the chat his son uses isn't web based
and in that case, just like I tell jose, if he wants help from us he has
to know which chat program his son is using. U cant just ask what
protocol is chat because chat isnt the program. The program can be any
one of AOLIM, yahoo messenger, msn messenger, jabber, etc. Once u know
u will know the protocol because each one uses it's own, and therefore
differnet ports as well. HOwever to block them in a firewall u dont need
to know the protocols, they are irrelevant and iptables doesn't go by
protocols when concerning chat. U would use the port numbers in that case.
for example aol uses port 5190 for both incoming and outgoing
yahoo uses port 5050 for outgoing but uses ports above 1024 for incoming
>>Here's the situation, my child at home is *ed to chat. He spends
>>all night (literally) chating on the computer and I want to curtail the
>>hours that he has access to it.
>>I have an idea, unfortunately i'm not good enough to even know if it
>>would work, much less know how to do it.
>>This is my setup:
>>at home I have a LAN with three Windows PC's connected to a router then
>>to a cable modem and then to Road Runner. It has dynamic ip address.
>>at work I have a linux (Debian Woody) connected to a router. This
>>router has a static ip address.
>>Can I set up the router at home to use my linux box at the office as a
>>gateway and then write some kind of script that will turn on/off access
>>to chat (or even the entire net)?????
no because you are not on your company's network at home. Your home
connection is on roadrunner's network and has to get outside of their
network before any data could even come close to hitting your company's
network and thus your computer at work. Your gateway at home *has* to be
one of roadrunner's servers in order for yoru computer to reach the general
Internet because you have to get out of roadrunner's network first.
>>Any ideas/pointers/rtfm's please!!! I tried setting my home router to
>>stop allowing internet access from 12am to 6am but he is somehow getting
>>around that (I think the router just stops web access...)
I'd setup 2 sets of firewall scripts and have a cron job run the
appropriate script at certain times of the day. 1 script would turn on
the chat access and cron would run it at say 6pm and another script would
run at 9pm to block chat access and from 9pm one night to 6pm the next
cron wouldn't do anything. Then 6pm the next day cron runs to enable chat
again. If this is web based chat u will be blocking more than chat though
but it sounds like it's not from your last sentence and in that case you
will have to know which program he is using and which ports then that the
program works on (i.e. AOL, Yahoo, Jabber, etc.)