We deploy Routerboards to remote offices to provide guest wireless access. We are regularly receiving notices from ISPs that wireless users are downloading movies from a honeypot. The team who deploys and manages the configuration has had problems getting the unit to drop the traffic so I'm hoping this community can point us in the right direction. We risk having the service terminated if we can't mitigate this activity.
The device is a Routerboard 951Ui-2HnD, version 6.40.4, firmware ar9344, current firmware 3.22. I'm not sure what all they've tried in the past, but looking in the config of a specific router where the problem exists, I see an L7 rule with this regexp:
^(\x13bittorrent protocol|azver\x01$|get /scrape\?info_hash=get /announce\?info_hash=|get /client/bitcomet/|GET /data\?fid=)|d1:ad2:id20:|\x08'7P\)[RP]
Also, is there a way to schedule availability of the services. For example, only allow wireless connections between certain hours of certain days.