Bittorrent / P2P best blocking method

TheWiFiGuy · April 18, 2012, 10:16pm

Hi

Im trying to block as much p2p traffic as possible - what with court cases on copyright, id rather just drop it as the service we provide is free access wifi at RV sites and such aimed at customers just checking email and browsing the net. Dropping valid torrent traffic such as updates etc is fine.

I see i can block it using L7 firewall, and also blocking torrent DNS requests, but the article I referenced on Greg Sowells blog failed when trying to paste the l7 regex expressions - possibly due to ROS version changes.

Can anyone share their methods to block , mark or limit p2p traffic please ?

Regards

nz_monkey · April 18, 2012, 11:35pm

There are a lot of ways to do this. Most wont work very well. The best way i have found is to use a Heuristic IDP type device in L2 mode to identify bit torrent e.g. Palo Alto Networks. When it sees BitTorrent it can mark packets with dscp, then use the Mikrotik to identify dscp marked packets and queue them appropriately.

TheWiFiGuy · April 19, 2012, 6:15pm

I’ll look into that for larger sites.

However I really could do with the best way to drop some p2p traffic on a best endeavours basis using ROS

Any other recomendations.