Hi I have ROS 2.9. I limit users using pcq. During the day I limit all p2p traffic using all_p2p - for marking people using P2P, then people marked in firewall get in address list and in firewall there are almost all ports blocked. It worked, but week ago stopped. Some people download p2p using ports that are blocked for them. I was thinking it cause of some improvement of utorrent. I installed utorrent and I was blocked I couldnt download nothing. So now I have no idea how they can override it, what protocol or client they can use. Please can you help?
Firewall rules are in lower post(sorry for mess), but I had to correct my topic.
some p2p protocols may only be dropped, not limited
this is my firewall
1 ;;; allow already established connections
chain=forward action=accept connection-state=established
2 ;;; allow related connections
chain=forward action=accept connection-state=related
3 ;;; drop invalid connections
chain=forward action=drop connection-state=invalid
4 ;;; p2p_den
chain=forward action=drop p2p=all-p2p src-address-list=downloaders_p2p
5 ;;; ICQ
chain=forward action=accept dst-port=5190 protocol=tcp
src-address-list=downloaders_p2p
6 ;;; Jabber
chain=forward action=accept dst-port=5222 protocol=tcp
src-address-list=downloaders_p2p
7 chain=forward action=accept dst-port=8291 protocol=tcp
src-address-list=downloaders_p2p
8 ;;; Call of Duty
chain=forward action=accept dst-port=28959-28961 protocol=udp
src-address-list=downloaders_p2p
9 ;;; downloaders_p2p_block_tcp
chain=forward action=drop dst-port=1000-65535 protocol=tcp
src-address-list=downloaders_p2p
10 ;;; downloaders_p2p_block_udp
chain=forward action=drop dst-port=2000-65535 protocol=udp
src-address-list=downloaders_p2p
at first firewall marks ip using p2p as downloaders_p2p and then send them to address list, for these people I have other rules limiting them ports they only can open ports 0-1000 for tcp, 0-2000 for udp. But I dont know what is wrong, but some users that using p2p the firewall recognize them and mark them, but they can still open blocked ports.
I was thinking of limit to users marked as downloaders_p2p number of connections. Could it be helpful?