Route some traffic (bittorent) to second WAN interface

m0zeid

me too still be to pfsense but i think it should be possible.
I know it can be done on mikrotik, so why not on pfsense?

it's done using Policy Based Routing PBR, I think you start googling on that.
https://doc.pfsense.org/index.php/What_is_policy_routing

tim.mcmanus

You can't do application-based policy routing.  You can do port/IP-based policy routing.

m0zeid

well on mikrotik you can use mangle to identify the traffic.

I don't know if it is applicable here with pfsense somehow, and btw I really want to know the answer to your question since I will do the same with my firewall :)
I will keep my eye on this thread.

Best of luck

Harvy66

Identifying BitTorrent traffic is a lost cause. The only time it really works is when you have some generic BT client like Blizzard Updater or something that follows the defaults. Beyond that, it's a mix of encrypted TCP and UDP traffic going to random ports.

muntos

I know you can do routing based on IP/port but it's there a Layer 7 routing available (on pfSense or other product) ?
My Asus router has a (real time?) traffic analyzer that can identify if the traffic was made by BitTorrent, Web, Streaming, etc… How does it do it ?

tim.mcmanus

@muntos:

I know you can't do any routing based on IP/port but it's there a Layer 7 routing available (on pfSense or other product) ?
My Asus router has a (real time?) traffic analyzer that can identify if the traffic was made by BitTorrent, Web, Streaming, etc… How does it do it ?

You can absolutely do routing based on IP/port.  It's done all the time with pfSense.

Set a static IP and static IP port for your BT client and create policies.  Done.

muntos

@tim.mcmanus:

@muntos:

I know you can't do any routing based on IP/port but it's there a Layer 7 routing available (on pfSense or other product) ?
My Asus router has a (real time?) traffic analyzer that can identify if the traffic was made by BitTorrent, Web, Streaming, etc… How does it do it ?

You can absolutely do routing based on IP/port.  It's done all the time with pfSense.

Set a static IP and static IP port for your BT client and create policies.  Done.

Sorry, it was a (big) typo on my sentence, I meant to say that you CAN not CAN'T :D

tim.mcmanus

I was thinking more about this and unfortunately can't test it, but you could conceivably set up a floating rule and put both WANs in a load balancing group and that might achieve what you want to do.

Normally I'd test before I'd recommend it, but I don't have a second WAN anymore.

muntos

@tim.mcmanus:

Set a static IP and static IP port for your BT client and create policies.  Done.

Well, this I don't think is gonna work, from my knowledge BitTorrent traffic goes out to random ports, you can set a static port (or range of ports) for the (outside) clients to connect to you.

tim.mcmanus

If it's just one client, load balance all traffic from that client.