• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

How to block all P2P….????

Scheduled Pinned Locked Moved General pfSense Questions
14 Posts 6 Posters 5.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • M
    mohdhizami
    last edited by Mar 2, 2007, 4:12 PM

    Plzzz
    how to block all P2P…..?????

    1 Reply Last reply Reply Quote 0
    • H
      hoba
      last edited by Mar 2, 2007, 6:03 PM

      P2P Apps are rather tricky. You only will manage to do this by using some pretty restrictive ruleset for machines going out to the internet. As these Apps even fall back to use port 80 you might need even a proxy to stop their traffic. Other option is to install snort. It has some detection rules for p2p apps. If you check the "block offenders" option it will block the cients that try to use p2p. However, they then will be completely blocked (any traffic) for some time.

      1 Reply Last reply Reply Quote 0
      • O
        OrCAD
        last edited by Mar 6, 2007, 6:52 PM

        Hello,

        hoba…is possible to add packet filter L7?
        thanks...

        1 Reply Last reply Reply Quote 0
        • S
          sullrich
          last edited by Mar 6, 2007, 7:03 PM

          @OrCAD:

          Hello,

          hoba…is possible to add packet filter L7?
          thanks...

          It will require someone to port it from Linux.

          1 Reply Last reply Reply Quote 0
          • O
            OrCAD
            last edited by Mar 6, 2007, 10:55 PM

            ok,
            this is a very good option for blocking p2p with ghost/stealth option…
            I hope someone can help for this....

            OrCAD

            1 Reply Last reply Reply Quote 0
            • S
              sullrich
              last edited by Mar 6, 2007, 10:58 PM

              Might want to start a bounty..

              1 Reply Last reply Reply Quote 0
              • M
                mohdhizami
                last edited by Mar 7, 2007, 4:39 AM

                how to setting snort…???

                1 Reply Last reply Reply Quote 0
                • H
                  hoba
                  last edited by Mar 7, 2007, 5:29 AM

                  enable all rules related to p2p apps and enable the "block offenders" option.

                  1 Reply Last reply Reply Quote 0
                  • M
                    mohdhizami
                    last edited by Mar 9, 2007, 8:48 AM

                    i  have try snort and enable all rules… but p2p still can run..... ???
                    can u help me tu full block p2p plzzzz... :'(

                    1 Reply Last reply Reply Quote 0
                    • H
                      hoba
                      last edited by Mar 9, 2007, 11:32 AM

                      Which p2p Application are you testing with? Maybe there is no detection rule for this special application yet in snort or at least not in the default ruleset. As we allow editing of rules and there are alternative rules out there you should be able to add the needed detections to your snort install.

                      1 Reply Last reply Reply Quote 0
                      • P
                        pogey
                        last edited by Sep 20, 2007, 7:32 AM

                        snort not blocking limewire

                        1 Reply Last reply Reply Quote 0
                        • C
                          Cry Havok
                          last edited by Sep 20, 2007, 12:48 PM

                          That'll be the gnutella protocol then?  The standard snort rules include ones to detect this.  Do you have the relevant rules enabled and snort running?

                          1 Reply Last reply Reply Quote 0
                          • P
                            pogey
                            last edited by Sep 27, 2007, 8:10 AM

                            Yes I have enabled all rule in snort. snort can detect the limewire as gnutella but not block it.

                            1 Reply Last reply Reply Quote 0
                            • C
                              Cry Havok
                              last edited by Sep 27, 2007, 7:25 PM

                              Have you checked the "Block offenders" option?

                              1 Reply Last reply Reply Quote 0
                              • First post
                                Last post
                              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                                This community forum collects and processes your personal information.
                                consent.not_received