Block or Limit Torrents

Abdisirat · July 29, 2021, 3:39pm

Is there an effective Firewall procedure for Blocking torrents or Limiting their bandwidth ?

rextended · July 29, 2021, 3:51pm

You ask effective, with this assumption, the reply is NO

Abdisirat · July 29, 2021, 4:13pm

Let me rephrase the question..I would like to block torrents or Limit their bandwidth usage within my network. Please share some working procedures. thanks

Cablenut9 · July 29, 2021, 4:16pm

You can’t, because torrents can use ports 80 and 443 and then it looks like regular website traffic.

rextended · July 29, 2021, 4:27pm

I stopped doing this several years ago.
The programs have adapted to the countermeasures
and now everything is encrypted and uses standard ports used from other services…

Abdisirat · July 29, 2021, 4:34pm

..thanks Cablenut9.

Now what options or best practices are we left with on Mikrotik ? ..walking to the identified users and telling them to stop torrenting..

rextended · July 29, 2021, 4:42pm

Simply let the user use the line that pays you.

Jotne · July 29, 2021, 5:30pm

If you are a company and have control over all PC client, you can use system like Forcepoint that replaces the HTTPS certificate between the client and a proxy server that then do the examination og the internett traffic. At my company we do this. So yes its possible, but not for all type of clients and networks.

DarkNate · July 29, 2021, 5:38pm

Make use of common sense and use simple queues. Cap per customer not per protocol/traffic.

Why are people so hell-bent on violating net neutrality?

anav · July 29, 2021, 5:41pm

Simple, buy the disney channel for your kids and then they wont need to torrent the shows!
What is worth torrenting these days anyway??

Cablenut9 · July 29, 2021, 5:45pm

If you need to find something old, weird, or otherwise hard to get the regular way (like the Olympics) then torrenting is a suitable option.

tapsin · November 6, 2023, 8:45pm

Mark PACKAGE

Layer 7 Protocol

/ip firewall layer7-protocol
add comment="Block Bit Torrent" name=layer7-bittorrent-exp regexp="^(\\x13bitt\
    orrent protocol|azver\\x01\$|get /scrape\\\?info_hash=get /announce\\\?inf\
    o_hash=|get /client/bitcomet/|GET /data\\\?fid=)|d1:ad2:id20:|\\x08'7P\\)[\
    RP]"

Layer 7 bittorrent add

And Mangle Add

/ip firewall mangle
add action=mark-packet chain=prerouting layer7-protocol=layer7-bittorrent-exp \
    new-packet-mark=Torrentci passthrough=yes

/queue simple
add max-limit=512k/1M name=TORRENT packet-marks=Torrentci target=""

Bandwith limited..

rextended · November 7, 2023, 8:47am

Poor deluded… Which version are you referring to, the one from 10 years ago?

Pretending it works would only limit the speed of the first packet…