Block P2P, beginning level

webberlink · August 24, 2007, 5:45pm

Hi, I am a very new Router-OS user. I have Router-os 2.9.4 version.

I have 3 internet lines, each line is 4 Mbyte. 3 Network cards connect to each ISP and one network card set up as Local interface connect to hub and access point for my network.

How to block P2P? I read all simple queue forum topic, and Transparent trafficshaper. I still don’t understand and don’t know how to begin.

I mark my connection as group1, group2 and group3 for load balance based on the sample in wiki . I create hotspot, and radius server to do AAA for my user.

I follow some sample in forum to mark connection and mark package and create one simple queue called p2p and download game using utorrent. It does not limit the traffic at all. And I also see that there is no package in the p2p queue. There is a dynamic queue created for my from hotspot set up. Any one please kindly help me!
Thanks.

nevia · August 28, 2007, 9:50pm

/ip firewall filter add chain=forward p2p=all-p2p action=drop

You Can try this rule,you can prevent most p2p traffic
if you want shape p2p trafic use queue tree and mangle

webberlink · September 2, 2007, 4:21am

Thank you for your reply. Try that but utorrent still go through. Any more suggestion?

omega-00 · September 3, 2007, 2:05am

only reason it would still go through would be if something isn’t right with the rule you put in.. OR
you’re using encrypted connections for utorrent, in which case there’s not much you can do.

The best option if you wanted to try and block it completely would be to start with a drop-all rule at the end of your firewall, so nothing that isn’t specifically allowed gets through.

Then add the following allowances:
http
https
pop3
imap
smtp
dhcp
dns
winbox

and work from there.

webberlink · September 3, 2007, 5:29pm

Many thanks for your reply.