utorrents 2.2 l7 mt 5 b4

Ripper · December 19, 2010, 9:01pm

How to mangle utorrents traffic … default l7 rule

/ip firewall layer7-protocol
add comment="" name="\B5TP" regexp="\\x7F\\xFF\\xFF\\xFF\\xAB"

/ip firewall mangle
add action=mark-connection chain=forward comment="" connection-state=new disabled=no \
layer7-protocol="\B5TP" new-connection-mark="\B5TP" passthrough=yes protocol=udp
add action=mark-packet chain=forward comment="" connection-mark="\B5TP" disabled=no \
new-packet-mark="\B5TP" passthrough=yes

wan’t work

i’ve tryed that

/ip firewall layer7-protocol
 add comment="" name=bittorrent regexp="^(\\x13bittorrent protocol|azver\\x01\$\
    |get /scrape\\\?info_hash=get /announce\\\?info_hash=|get /client/bitcomet\
    /|GET /data\\\?fid=)|d1:ad2:id20:|\\x08'7P\\)[RP]"

unhelpfull too

DannyZ · December 19, 2010, 10:56pm

Dont know about you but i use 3 Layer 7 protocols to limit (give lower priorety)

Bittorent:

^(\13bittorrent protocol|azver\01$|get/scrape\?info_hash=)|d1:ad2:id20:|\08'7P\)[RP]

2: EDonkey:

^[\C5\D4\E3-\E5].\?.\?.\?.\?([\01\02\05\14\15\16\18\19\1A\1B\1C !234568@ABCFGHIJKLMNOPQRSTUVWX[`\81\82\90\91\93\96\97\98\99\9A\9B\9C\9E\A0\A1\A2\A3\A4]|Y................\?[ -~]|\96....\$)"

3: Tor:

TOR1.*<identity>

Then @ Mangle :

 2   ;;; P2P filesharing 
     chain=prerouting action=mark-packet new-packet-mark=edonkey_p2p_in 
     passthrough=yes layer7-protocol=edonkey in-interface=5Ghz Link 

 3   chain=postrouting action=mark-packet new-packet-mark=edonkey_p2p_out 
     passthrough=yes layer7-protocol=edonkey out-interface=5Ghz Link 

 4   chain=prerouting action=mark-packet new-packet-mark=bittorent_in 
     passthrough=yes fragment=no layer7-protocol=bittorrent 
     in-interface=5Ghz Link 

 5   chain=postrouting action=mark-packet new-packet-mark=bittorent_out 
     passthrough=yes layer7-protocol=bittorrent out-interface=5Ghz Link

And then to Queue Tree:

 
2   name="bittorent_in" parent=GLOBAL_IN packet-mark=bittorent_in limit-at=0 
     queue=default priority=8 max-limit=0 burst-limit=0 burst-threshold=0 
     burst-time=0s 
 4   name="edonkey_p2p_in" parent=GLOBAL_IN packet-mark=edonkey_p2p_in 
     limit-at=0 queue=default priority=8 max-limit=0 burst-limit=0 
     burst-threshold=0 burst-time=0s 
10   name="bittorent_out" parent=GLOBAL_OUT packet-mark=bittorent_out 
     limit-at=0 queue=default priority=8 max-limit=0 burst-limit=0 
     burst-threshold=0 burst-time=0s 
12   name="edonkey_p2p_out" parent=GLOBAL_OUT packet-mark=edonkey_p2p_out 
     limit-at=0 queue=default priority=8 max-limit=0 burst-limit=0 
     burst-threshold=0 burst-time=0s

And thats All. U’re good to go.

Ripper · December 20, 2010, 12:14am

Most of all traffic genereted by uTorrents with uTP protocol …

so i don’t think that

^(\13bittorrent protocol|azver\01$|get/scrape\?info_hash=)|d1:ad2:id20:|\08'7P\)[RP]

will help me

tor and EDonkey not used in our country =)

uTorrent is about 40-50% of all traffic

DannyZ · December 20, 2010, 11:50am

Before say no - try it.

Ripper · December 20, 2010, 4:09pm

after recreating rules is seems to be much better 50% of trafic is download 30% p2p 20% web download =)

Thanks

DannyZ · December 20, 2010, 6:02pm

Welcome