Community discussions

MikroTik App
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

P2P - ARES

Mon Jun 26, 2006 12:48 am

I´ve been searching in the forum and only found old theads about ARES P2P blocking.

I´m testing MT ... i´m new in this.

I´m doing some basic P2P limiting and blocking.... everything works fine with emule,,,, but i can't block or limit ARES...

I´m testing MT 2.9.26 demo version

any help?

ps.sorry for my poor english
 
cibernet
Long time Member
Long time Member
Posts: 610
Joined: Fri Jan 28, 2005 7:22 pm
Location: Marcos Juárez, Córdoba, Argentina
Contact:

Re: P2P - ARES

Mon Jun 26, 2006 6:56 am

I´ve been searching in the forum and only found old theads about ARES P2P blocking.

I´m testing MT ... i´m new in this.

I´m doing some basic P2P limiting and blocking.... everything works fine with emule,,,, but i can't block or limit ARES...

I´m testing MT 2.9.26 demo version

any help?

ps.sorry for my poor english
You can´t limit ares, you can only drop it
José Ignacio Acosta
MikroTik Consultant IDAR0001
Mikronet

Movile: +54 9 3472-624722
Email/Msn: info[at]mikronet.com.ar
 
User avatar
janisk
MikroTik Support
MikroTik Support
Posts: 6283
Joined: Tue Feb 14, 2006 9:46 am
Location: Riga, Latvia

Mon Jun 26, 2006 8:47 am

you can limit p2p that way - set bandiwth for http, ftp and other well known protocols and for the rest of traffic set harsh limits ;) so - any unknown protocol will be limited - ares, encrypted bittorent etc.
 
cibernet
Long time Member
Long time Member
Posts: 610
Joined: Fri Jan 28, 2005 7:22 pm
Location: Marcos Juárez, Córdoba, Argentina
Contact:

Mon Jun 26, 2006 9:42 am

you can limit p2p that way - set bandiwth for http, ftp and other well known protocols and for the rest of traffic set harsh limits ;) so - any unknown protocol will be limited - ares, encrypted bittorent etc.
Yes, that would be a good workaround, but, not a solution...
José Ignacio Acosta
MikroTik Consultant IDAR0001
Mikronet

Movile: +54 9 3472-624722
Email/Msn: info[at]mikronet.com.ar
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Thu Jun 29, 2006 1:27 am

i can't even drop Ares... how should I configure MT to drop Ares¿? gimme the syntax. Sorry if it sounds too "pretencioso" (i don't know how to say that word in english), but i´m really new in MT stuff.
 
User avatar
sergejs
MikroTik Support
MikroTik Support
Posts: 6621
Joined: Thu Mar 31, 2005 3:33 pm
Location: Riga, Latvia
Contact:

Thu Jun 29, 2006 7:19 am

'ip firewall filter add action=drop p2p=warez chain=forward'.
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Thu Jun 29, 2006 9:12 pm

it doesn't work for me

look at this screenshot

Image

i highlighted in red the telnet screen where i created the firewall rule, ares downloading :x and the winbox with the connections list.

why ares still works even if i drop it¿?
 
User avatar
maximan
Trainer
Trainer
Posts: 549
Joined: Sat May 29, 2004 12:10 am
Location: Rio Cuarto, Argentina
Contact:

Thu Jun 29, 2006 9:51 pm

Move the rule to top

Maxi
MKE Solutions > Professional Support IT (Spanish / English)
FastNetMon / FNM Manager: DDoS Detection Tools.
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Fri Jun 30, 2006 1:02 am

it's the only rule
Image
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 24495
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia

Fri Jun 30, 2006 7:47 am

did you add that rule before the connection was estabilshed? then it's a no-go, restart connection (reboot) and then see
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Fri Jun 30, 2006 1:57 pm

I shutdown the MT, then turn off my pc...
then turn on the MT, then turn on my pc..
then started Ares... anddddddddddd............ Ares still rules the situation...

Image
 
SeaSteve
just joined
Posts: 14
Joined: Tue May 23, 2006 3:11 am
Location: Central Texas

Sat Jul 01, 2006 3:11 pm

Are there any more P2P formats that can't be limited and should be dropped?
Success is getting what you want. Happiness is wanting what you get.
 
User avatar
aitsecurity
Frequent Visitor
Frequent Visitor
Posts: 84
Joined: Thu Mar 16, 2006 12:28 am
Location: venezuela

Sun Jul 02, 2006 4:33 am

Are there any more P2P formats that can't be limited and should be dropped?
i try sometime stop ares, the news version of ares is encrypted, and mk no stop, the other p2p yes,


i am thinking need time for study or sniff the ares,

the old version of ares, mk can stop

best regars
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Sun Jul 02, 2006 7:30 pm

is it possible to detect encrypted Ares packets?

Will MT detect them someday?

P2P are a headache for networks administrators... and one of the most important feature i see in MT is the ability to detect (drop or control) P2P.

I´m want to migrate to MT.. but first i want to know... Now MT can't stop one of the most popular p2p clientes ... but will stop it one day¿? in future versions....
 
xp_killer
just joined
Posts: 4
Joined: Sun Mar 12, 2006 10:53 pm
Location: Argentina - Mar del Plata

Mon Sep 18, 2006 10:28 pm

There are no Question for KoloRasta ??? some day you gonna support this?? :evil:
 
dannyboy
Member Candidate
Member Candidate
Posts: 195
Joined: Fri Sep 16, 2005 4:21 am
Location: Nicaragua/USA
Contact:

Tue Sep 19, 2006 7:08 am

hello,

my mt is blocking ares try to drop all p2p and see if that works for you.
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Thu Sep 21, 2006 11:20 pm

hello,

my mt is blocking ares try to drop all p2p and see if that works for you.
are you sure??? install last version of Ares, run it and wait for some minutes and see what happens... and then tell me the results..

suerte viejita!!! :wink:
 
xp_killer
just joined
Posts: 4
Joined: Sun Mar 12, 2006 10:53 pm
Location: Argentina - Mar del Plata

Still didn`t work...

Sun Sep 24, 2006 8:57 pm

Normis you tell us that you tested the rule to drop warez...
I know the rule must be added and taked to the top of the list, and the router rebooted to it works.
In this case the Ares client never get conected again (in prior versions of ARES)... It`s that the solution?? I must tell you the client still get the download of the queued files, and the problem is not solved, PLEASE TAKE YOUR TIME TEST IT.
You never gonna implement a better solution??? We must drop the ports...? Thanks to Kolo !!!


Aguante Viejita !!!
 
dannyboy
Member Candidate
Member Candidate
Posts: 195
Joined: Fri Sep 16, 2005 4:21 am
Location: Nicaragua/USA
Contact:

Mon Sep 25, 2006 6:19 am

Kolorasta,
Well, I downloaded the new version and installed in my computer, version 1.9.2.3011.

Still working as before! No traffic is going through, ARES does not connect...

just do this:

add chain=forward p2p=all-p2p connection-state=established action=drop comment="p2p" disabled=no

dont use any queues or any mangles for p2p just the filter rule and try it.

dannyboy

Who is online

Users browsing this forum: MSN [Bot] and 56 guests