How to block and stop torrent download

mark14 · February 22, 2014, 9:02am

ka81 · February 22, 2014, 4:42pm

Hi. I’m a newbie and it’s all very difficult to me.
Router - http://routerboard.com/RB2011UiAS-2HnD-IN
PC connected to router with cable to ETH5.
on PC installed latest http://www.utorrent.com/

uTorrent - Settings - Connection - Port - 25312
uTorrent - Settings - Remote - login: ka81 , pass - XXXXXX
here all the time it says No access. Reconnecting in xx secs.

Help me please to input all necessary ports and everything needed into router settings.

today it’s so:

p.s. with tp-link 1043 - NO problem, everything is working!

plisken · February 22, 2014, 5:55pm

You must install rule for DNS and for www

Try this in dutch but follow the printscreens a made

http://www.wirelessinfo.be/index.php/mikrotik/pages/torrent

mark14 · February 23, 2014, 7:57am

My Friend,
I try and put this as you sad but when I try to open uTorrent
and start to down load its still running,
thank you

mark14 · February 23, 2014, 8:02am

please check if this is corrent
torrent dns.png
torrent www.png

plisken · February 23, 2014, 8:45am

I think that you can add other torrent sites on that regexp.

plisken · February 23, 2014, 9:05am

I forgot something, look now on the website http://www.wirelessinfo.be/index.php/mikrotik/pages/torrent

You must add filter rules.
Add this rules above all the other

This rules give a heavy CPU load

mark14 · February 23, 2014, 1:55pm

my friend
I did what you sad but I think nothings happened
can you check my firewall rules what comes first or last
that is ok
Im sorry im just new to this router no experience yet
by the way im using this to office LAN

Thnk you,
torrent block.png

mark14 · February 23, 2014, 2:00pm

im using 4 wan load balancing this is correct because there is a selection on out interface “all Ethernet” but I made rule and add for but wan 1 and wan 2

plisken · February 23, 2014, 3:59pm

This looks good to me, thanks for given my karma

BWS001 · February 23, 2014, 4:24pm

The code provided looks like you are blocking the download of the .torrent file.. But if it comes from other sources or comes from a different kind of feed (other than HTTP) the torrent will still run. I would think if you truly want to stop the torrents from running you need to shape at layer 7

http://wiki.mikrotik.com/wiki/Basic_traffic_shaping_based_on_layer-7_protocols

cicserver · February 24, 2014, 4:57am

I tried this [copied from http://aacable.wordpress.com blog and at last, it worked fine for me]

/ip firewall layer7-protocol
add comment="P2P WWW web base cnoetent Matching / Zaib" name=p2p_www regexp=\
"^.*(get|GET).+(torrent|thepiratebay|isohunt|entertane|demonoid|btjunkie|mininova|flixflux|vertor|h33t|zoozle|bitnova|bitsoup|meganova|fulldls|btbot|fenopy|gpirate|commonbits).*\$"
add comment="P2P DNS Matching / Zaib" name=p2p_dns regexp=\
"^.+(torrent|thepiratebay|isohunt|entertane|demonoid|btjunkie|mininova|flixflux|vertor|h33t|zoozle|bitnova|bitsoup|meganova|fulldls|btbot|fenopy|gpirate|commonbits).*\$"
 
/ip firewall mangle
add action=mark-packet chain=postrouting comment="p2p download" disabled=no layer7-protocol=p2p_www new-packet-mark="p2p download" passthrough=no
add action=mark-packet chain=postrouting disabled=no layer7-protocol=p2p_dns new-packet-mark="p2p download" passthrough=no
 
/ip firewall filter
add action=drop chain=forward comment="Block P2p_www Packets / Zaib" disabled=no layer7-protocol=p2p_www
add action=drop chain=forward comment="Block P2p_dns Packets / Zaib" disabled=no layer7-protocol=p2p_dns
add action=drop chain=forward comment="Block General P2P Connections , default mikrotik p2p colelction / zaib" disabled=no p2p=all-p2p

mark14 · February 25, 2014, 7:57am

where would I put this code can you give me detailed instruction on how to apply this code
I so sorry I don’t even had experience in handling mokrotic product or any other manageable router or switch
thank you

plisken · February 25, 2014, 8:44am

This code must stand in regexp.

It’s the same code as I you showed

teknofu · December 15, 2014, 5:50am

It has been a while since this thread has been active but I figure I saw something that I could answer so why not.

As for the code from cicserver and how to “import” it into your router I would look at this article. http://wiki.mikrotik.com/wiki/Manual:Configuration_Management#System_Backup

Specifically sections 4 and 5.

basically copy the text into a notepad file then save it as name.rsc instead of name.txt and then drag and drop into the files section on your router. Once you have that done, open a new terminal and type

import file=name.rsc

and the config will be placed in the proper sections of the router. Make sure you customize ip addresses and interface names or the command will fail.

Good luck in your future routing.

karina · December 16, 2014, 12:48am

teknofu:

It has been a while since this thread has been active but I figure I saw something that I could answer so why not.

As for the code from cicserver and how to “import” it into your router I would look at this article. http://wiki.mikrotik.com/wiki/Manual:Configuration_Management#System_Backup

Specifically sections 4 and 5.

basically copy the text into a notepad file then save it as name.rsc instead of name.txt and then drag and drop into the files section on your router. Once you have that done, open a new terminal and type
import file=name.rsc
and the config will be placed in the proper sections of the router. Make sure you customize ip addresses and interface names or the command will fail.

Good luck in your future routing.

or simply copy and paste into a terminal window in the router