View previous topic :: View next topic |
Author |
Message |
poel Junior Member
Joined: 02 Dec 2008 Posts: 5 Location: Indonesia
|
Posted: Fri Dec 05, 2008 7:08 pm Post subject: Block P2P Application |
|
|
Hello...
how to block p2p application on sms:?:
any budy know the way
on some article the p2p application can block with l7filter.
please help me...
thank's |
|
Back to top |
|
gerasimos_h Site Admin
Joined: 09 Aug 2007 Posts: 1757 Location: Greece
|
Posted: Sat Dec 06, 2008 8:25 am Post subject: |
|
|
It's quite difficult to block p2p, but you can try though.
If you want to use layer7 match you have to switch to hugel7 kernel, and try
iptables -t mangle -A POSTROUTING -m layer7 --l7proto fasttrack -j DROP
iptables -t mangle -A POSTROUTING -m layer7 --l7proto edonkey -j DROP
iptables -t mangle -A POSTROUTING -m layer7 --l7proto directconnect -j DROP
iptables -t mangle -A POSTROUTING -m layer7 --l7proto bittorrent -j DROP
If you can't block 100% p2p another way is to control traffic through a QoS (Quality of Service) script, so everyone can work without problems.
You can take a look at Linux Advanced routing & traffic control if you haven't already.
gerasimos_h _________________ Superb! Mini Server Project Manager
http://sms.it-ccs.com |
|
Back to top |
|
poel Junior Member
Joined: 02 Dec 2008 Posts: 5 Location: Indonesia
|
Posted: Sat Dec 06, 2008 2:35 pm Post subject: |
|
|
ok thank's for the advice and the link book for linux advanced routing& trafic control.
i will try it. |
|
Back to top |
|
|