BitTorrent Encryption Observations

chris-oct · April 28, 2006, 7:42pm

In my tests, 96% of encrypted torrent packets are escaping/bypassing the p2p packet mark

Firewall: Mangle
Chain: forward, P2P: all-p2p, mark-packet: p2p

p2p Queue Trees:
p2p_incoming - parent: ether2, packet mark: p2p, max-limit: 64k
p2p_outgoing - parent: ether1, packet mark: p2p, max-limit: 64k

With uTorrent Encryption off
uTorrent is downloading at a speed of 8kB/s
p2p_incoming queue is red and limiting connection to 64kbps

Enable encryption on uTorrent
Stop Torrent
Wait 30 seconds
Start Torrent

uTorrent is downloading at a speed of 180kB/s
p2p_incoming queue is red and limiting connection to 64kbps

Switch uTorrent Encryption off
Stop Torrent
Wait 30 seconds
Start Torrent

uTorrent is downloading at a speed of 8kB/s
p2p_incoming queue is red and limiting connection to 64kbps

Beccara · April 28, 2006, 9:37pm

IIRC mikrotik said somewhere than ecrypted P2P traffic couldnt be rate limited only dropped

chris-oct · April 28, 2006, 10:19pm

I just reviewed those other posts and I see that as well.

http://forum.mikrotik.com/t/bittorrent-and-mt/6105/1

So it seems you have three options:

Block ALL bittorrent - encrypted and non-encrypted
Rate Limit unencrypted, but not rate-limit encrypted
No rate limit at all

Beccara · April 29, 2006, 1:23am

Let me have a play and a think about it on our network - I belive that it is possable to Limit NE BT traffic and drop E BT traffic

pekr · April 29, 2006, 3:58am

I would give users a choice - either they turn encryption off, or I forbid them bit-torrent. I don’t want to abandon it, just have it under control. If user breaks my trust, then I will find other ways, of how to legitimately limit him …

-pekr-

bushy · April 29, 2006, 11:39pm

maybe the usual solution , allow/limit everything you can detect and drop everything else? or put the “Random” feature to good use in a script ?