How to block all P2P….????
-
P2P Apps are rather tricky. You only will manage to do this by using some pretty restrictive ruleset for machines going out to the internet. As these Apps even fall back to use port 80 you might need even a proxy to stop their traffic. Other option is to install snort. It has some detection rules for p2p apps. If you check the "block offenders" option it will block the cients that try to use p2p. However, they then will be completely blocked (any traffic) for some time.
-
Hello,
hoba…is possible to add packet filter L7?
thanks... -
Hello,
hoba…is possible to add packet filter L7?
thanks...It will require someone to port it from Linux.
-
ok,
this is a very good option for blocking p2p with ghost/stealth option…
I hope someone can help for this....OrCAD
-
Might want to start a bounty..
-
how to setting snort…???
-
enable all rules related to p2p apps and enable the "block offenders" option.
-
i have try snort and enable all rules… but p2p still can run..... ???
can u help me tu full block p2p plzzzz... :'( -
Which p2p Application are you testing with? Maybe there is no detection rule for this special application yet in snort or at least not in the default ruleset. As we allow editing of rules and there are alternative rules out there you should be able to add the needed detections to your snort install.
-
snort not blocking limewire
-
That'll be the gnutella protocol then? The standard snort rules include ones to detect this. Do you have the relevant rules enabled and snort running?
-
Yes I have enabled all rule in snort. snort can detect the limewire as gnutella but not block it.
-
Have you checked the "Block offenders" option?