Hi

I have setup one cable server in our ISP.we have total 400 client.

and we are useing 512kbps.

now problem is,

some of our client used some site like,

www.imesh.com,www.kazaa.com etc.for up loading and downloading.

now they reseved our 50% bandwidth.and our net speed get down.

now i want to control them.

for preventing them,i had set some rules in ipchains with,
--------------------------------------

port sitename protocol

1214 kazaa.com tcp/udp

4329 imesh.com tcp

1214 morpheaus tcp/udp
----------------------------------------

i had block all site's port what they using.

but still my net speed down.my other user can't acces net with average speed.


question is,

1) is there any other way to to prevent them for accessing bandwidth....
2) How can know ,how much bandwidth are used by one user.

3) is there any good project for managing bandwidth and controling bandwidth...


Please help ,i am really hadik with this.....
-------------------
Hitesh

I don't know about ipchain, but iptables, you can block something without giving a port number like :
$IPTABLES -A INPUT -s kazaa.com -p tcp -j DROP

but there's probably something in ipchain to do the same.

Hi

Thanks,

I think i did same thing with ipchains,
here is,

/sbin/ipchains -A input -s 0/0 -d 0/0 1214 -p tcp DENY
/sbin/ipchains -A input -s 0/0 -d 0/0 1214 -p udp DENY

/sbin/ipchains -A input -s 0/0 -d 0/0 4329 -p tcp DENY

all rules i had apply as above for rest of sites...

but still no change in net speed....

one more,if i set some rules for IPTABLE ,then is this make any changes in ipchains?or can i set some rules in IPTABLE?

or if any one think i had set wrong rules then suggest me right one.......

plz help me....

i was feel headik????

-----------------
Hitesh

I'm not sure what you're trying to do.
You're hosting website or something and kazaa try to access it? Blocking kazaa.com will not help, since the trafic is generated by routeur.
Try to get port list used by these router (run kazaa, then look at the trafic) and block these ports.
However, this will not help you a lot, because Kazaa 2.0 is doing search on port 80, too.
You better ask money to your client if they use too much bandwidth.

Hi
I had tried thi but still facing problem...

can u give port of this two sites,bec'a i am trying to block this sites.....

1)www.kazaa.com
2)www.imesh.com

so please do search for me and post the port number...

Thanks in Adv,

Hitesh

I think that's what's been said already. Don't try to block a port, block the site where the traffic is going.

ports can be changed, where if you check the hostname of the connection and block that it will not matter what port they try to use.

IMO you should start with bandwidth monitoring: Google for the "MRTG" (or search Freshmeat for "bandwidth") and LARTC (Advanced Routing) websites. As mentioned in other LQ threads (search) P2P protocols like KaZaA v2 don't use just one port but scan a range for acceptable ones.

I heard that the new Kazaa now use http port to do search, so it's nearly impossible to block.
Is someone know where Kazaa protocol info can be found?

you might need to setup a proxy to catch the port 80 traffic.