How To Deny eth0 Access to Specific Binary[SOLVED]

xevix · Last edited by xevix on Fri May 11, 2007 7:59 pm; edited 1 time in total

Is there a way to deny internet access to a specific binary, such as by iptables? My friend and I have a single copy of doom3, he wants to play online I want to play offline, but as soon as I enter the game it checks the internet to see if someone else is using the key, and I hate to shut off my eth0 just to play the game. Any ideas?

Solved:

Found the master server IP and blocked it.
_________________
AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ AuthenticAMD GNU/Linux 2x2.2 ghz
nVidia GeForce 8800 GTS 320Mb
250 gb SATA hd
2gb pc-3200 DDR

Jointy · Posted: Wed May 09, 2007 10:11 pm Post subject:

Hy...

you can filter the doom3 query packets that will send by the game3 with iptables...

On which ports (destination port is interesting) does the game send the query ???
_________________
[Host: Arko]
ASUS G1S
http://gentoo-wiki.com/HARDWARE_Asus_G1S
[Host: Pandora]
PIII 1Ghz (133) / 512MB
1x40GB & 60GB (mdRAID1)
Hardened Stage 1 Server
[Host: Plato]
verkauft (OpenSuse 11.0)

xevix · Posted: Wed May 09, 2007 10:14 pm Post subject:

I don't know, how to find out?
_________________
AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ AuthenticAMD GNU/Linux 2x2.2 ghz
nVidia GeForce 8800 GTS 320Mb
250 gb SATA hd
2gb pc-3200 DDR

Jointy · Posted: Thu May 10, 2007 9:48 pm Post subject:

hy,

I would emerge firestarter which is a really simple and usefull firewall script with a gui.

If you have emerged firestarter you need to startup firestarter and your doom3 to find out on which IP and Port is your game connect to.

Now you have to create a filter rule for outgoing traffic and put in the doom3 IP and/or Port.

this should work,

regards
Jointy

PS: firestarter depends on iptables and netfilter support in the kernel, so you need to compile this as module or built it in with the kernel
_________________
[Host: Arko]
ASUS G1S
http://gentoo-wiki.com/HARDWARE_Asus_G1S
[Host: Pandora]
PIII 1Ghz (133) / 512MB
1x40GB & 60GB (mdRAID1)
Hardened Stage 1 Server
[Host: Plato]
verkauft (OpenSuse 11.0)

xevix · Posted: Fri May 11, 2007 2:42 am Post subject:

Hey, problem with that, haha. Doom3 takes up full screen and refuses to let me switch desktops. Is there some log I can access to see the port?
_________________
AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ AuthenticAMD GNU/Linux 2x2.2 ghz
nVidia GeForce 8800 GTS 320Mb
250 gb SATA hd
2gb pc-3200 DDR

asiobob · Posted: Fri May 11, 2007 3:27 am Post subject:

2 ways,
1. Purchase 2 keys.
2. Findout what server doom3 is trying to connect to (do a netstat or something)
2.1 then edit your host file such that the name it uses to connect maps to your 127.0.0.1

xevix · Posted: Fri May 11, 2007 4:04 am Post subject:

The test appears to go very fast if successful, so I can't really catch it. If I just run netstat, then quickly run doom3 and leave, will that work to check?
_________________
AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ AuthenticAMD GNU/Linux 2x2.2 ghz
nVidia GeForce 8800 GTS 320Mb
250 gb SATA hd
2gb pc-3200 DDR

Jointy · Posted: Fri May 11, 2007 10:04 am Post subject:

You can run wireshark (aka etherreal) to sniff all traffic.
_________________
[Host: Arko]
ASUS G1S
http://gentoo-wiki.com/HARDWARE_Asus_G1S
[Host: Pandora]
PIII 1Ghz (133) / 512MB
1x40GB & 60GB (mdRAID1)
Hardened Stage 1 Server
[Host: Plato]
verkauft (OpenSuse 11.0)