|
Block P2P on Shorewall Firewall
Hi,
I like to block P2P Sharing in my network. can any one help me. Thanks Bharathvn http://expertsxchange.blogspot.com/ |
I used to have a shitload of iptables rules but I haven't looked into it recently.
This looks promising: http://sourceforge.net/projects/iptables-p2p Otherwise some quick googling: http://www.google.com/search?q=iptables+block+p2p |
Hi,
Thanks for your reply i have 2.6 kernel, what the link gave is not able to install. Kindly guide me Thanks Bharathvn http://expertsxchange.blogspot.com/ |
I'll have a look over the weekend. What P2P programs specifically are you looking to block?
|
Hi,
i like to block major P2P like Torrent download and limeware bharathvn |
With new torrent clients allowing the possibility of changing the port randomnly everytime the client is restarted, i'd say you're fighting a losing battle.
The whole blocking p2p subject has come up many times before, and as far as i know has never been solved. Sure you can block every port under the sun, then you will find someone using something like udp hole punching to get around that, or maybe using end to end encryption so you dont know they are even using protocol x (utorrent is introducing this feature to bt at present). The only way i can see that you could effectively block it all out to a certain extent, is to proxy all traffic threw squid, and block all other ports. There were some rules floating about a year back that allowed you to make it harder for people to use p2p on a network, but i have no idea as to where you can find them now. On this topic you are going to be fighting a losing battle, and at the end of the day, can you afford to spend x hours per day working out how they got around it and how to close down the latest hole? |
Hi,
what u meant is true? Currently i am handling with mutual understanding with Users. :D Thanks Bharathvn |
| All times are GMT -5. The time now is 02:00 AM. |