I don’t find a good answer to my question after searching the whole forum what are methods are mention is not working.
I want to know how can be block access with layer 7 protocol like user-agent based.
Like User-Agent=uTorrent
This feature is available in ISA server and sonic wall firewalls were we can defined the user-agents to block once we see it in the proxy debug log and we can also monitor the user-agents in IP/Firewall/connection if we found any P2P connection then we can get the user-agent in log proxy.
Any comments from Mikrotik on the same.
Please help in this regard as my customer are using uTorrent for download illegal software and porn moves .
This pattern works fine.
But if your life is too easy, then you can detect new log entries, parse web proxy logs and add ip address from the log entry to the address list. Then set up firewall rules to block IPs from the address list.
BTW: torrents are also used for legal downloads, which is much faster then http download.
Ya i agree with you that torrents also for legal downloads like your own mikrotik router os downloads but in my case my clients are 18 to 28 year and all are downloading nonsense.
sadly, I think the new uTorrent v2 encryption system is undetectable (yet).
So … you have to find other ways. Drop everything except good and known ports. Allow only certain number of connections per client. Give client a speed limit.
If you do that, you won’t even have to worry what they download. They won’t disturb anyone else.