Tue Aug 12, 2014 8:12 pm
Add these rules to your filter, but change the source address to your intended target. should do a pretty good job of killing a lot of p2p
/ip firewall filter
add action=drop chain=forward comment="TORRENT No 4: prohibits download .torrent files. " content="\r\
\nContent-Type: application/x-bittorrent" protocol=tcp src-port=80
add action=drop chain=forward comment="TORRENT No 5: 6771 block Local Broadcast" content="\r\
\nInfohash:" dst-port=6771 protocol=udp
add action=drop chain=forward comment=keyword_drop content=torrent src-address=10.10.0.0/22
add action=drop chain=forward comment=trackers_drop content=tracker src-address=10.10.0.0/22
add action=drop chain=forward comment=get_peers_drop content=getpeers src-address=10.10.0.0/22
add action=drop chain=forward comment=info_hash_drop content=info_hash src-address=10.10.0.0/22
add action=drop chain=forward comment=announce_peers_drop content=announce_peers src-address=10.10.0.0/22
add action=drop chain=forward comment=p2p_drop p2p=all-p2p