Port Blocking

Gradius · October 5, 2005, 7:30pm

I have issued this command to my router in hoped to block the default Gnutella ports to prevent filesharing on this network.

add chain=forward in-interface=client out-interface=client src-address=0.0.0.0 dst-address=0.0.0.0 protocol=udp src-port=6346-6350
dst-port=6346-6350 packet-mark=“” action=drop comment=“”

Is the correct command to block incoming and outgoing traffic through the router on ports 6346-6350?

Thanks in advance!

Borage · October 5, 2005, 10:25pm

No, I think the right way would be something like this one. Correct me if I’m wrong.

/ ip firewall filter 
add chain=forward p2p=gnutella action=drop comment="" disabled=no

maroon · October 6, 2005, 7:34pm

hey Borage ur idea is correct

and if you know the ports of gnutela … you can block it manually but try not to specify the interfaces …

just add protcool: tcp dst-port: xxxx action drop in the forwward chain