Thread: Iptables Rule to Block Amazon access to kindle 4 non-touch
View Single Post
Old 02-07-2012, 10:34 AM   #2
knc1
Going Viral
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 17,212
Karma: 18210809
Join Date: Feb 2012
Location: Central Texas
Device: No K1, PW2, KV, KOA
Quote:
Originally Posted by x64 View Post
Hey guys.

I am reading this forum for months. Thankyou again for the great support to all the great comunity here !

I have a kindle 4 non-touch - wich broke last week (without doing anything, the screen went all garbled and the lower part wasn't usable anymore).

Amazon Waranty service - sent me another one wich arived today. You know the procedure ... they deregistered the old one - and registered the new one in my account. All went well.

I ordered today a "replacement kindle 4 screen" from alibaba (some components ??? website).

My old kindle it's rooted (THANKYOU guys again).

IF I fix the screen (repair the screen) - I know I can still use the old one (without registering to amazon) by transfering books via USB from my computer BUT I need a viable way to BLOCK all traffic to and from amazon.com. Searching the internet i've seen some people saying that Amazon will "brick" my old device. Some people say they will "push update OTA"... well ... alot of opinions.

I want to BLOCK Amazon access to my device permanently but allow internet access to any other website (aka wikipedia / google ... whatever). I've found a K3 related post here ... but altering the route with route add default deny ... won't work for me (I would like more than local LAN access).

My question is actually NOT the iptables rules, but the IP's / addresses that I need to filter out. I will write the -DROP rules myself.

Thankyou so much again !
In bound connections can be blocked with the usual not allowing NEW connections.
I have seen postings of various Kindle 'stock' iprules that have one or more destination ports open (-dport 4xxxx -j ACCEPT) .
Getting rid of those will handle in bound blocking.

Out bound blocking is a bit more of a challenge using __only__ iptables since you can't block ip address ranges with iptable rules (directly).

Here is what you want to block outbound:
https://www.mobileread.com/forums/sho...93&postcount=1

Which (for address ranges) is easier to do with the routing table than iptables.
Just replace the "from" address in the above post with "from 0/0" (any).
knc1 is offline   Reply With Quote