Using L7 to block embedded video and audio traffic



  • I have been trying to block embedded video and audio traffic using Layer7 traffic shaper but it has NOT worked.

    I configured the Layer7 with "httpvideo" & "httpaudio" protocols and also configured the firewall rule. Attached are the screen shots of the Layer7 and Firewall rule configuration.

    The pfsense is run as the router/firewall and also runs squid and squid guard. The squid is running in transparent mode.

    I will appreciate any guide to help me solve this problem







  • What specific kind of embedded video and audio are you trying to block?

    httpvideo and httpaudio is specific to RFC 2616 traffic, a very specific kind of stream using http.

    I.E.  This would not match Youtube traffic, for example.



  • I wouldn't know what "RFC 2616 traffic" is but i meant like embedding video in ".flv" format in a web page. Check this site for example:

    http://www.chelseadaft.org/

    The video at the right side of the page starts playing as soon as you open the page. That's the kind of embedded video i'm looking to block.

    Thank you



  • @chuksonpfsense:

    I wouldn't know what "RFC 2616 traffic" is but i meant like embedding video in ".flv" format in a web page. Check this site for example:

    http://www.chelseadaft.org/

    The video at the right side of the page starts playing as soon as you open the page. That's the kind of embedded video i'm looking to block.

    Thank you

    That's not what those profiles block.



  • What kind of traffic does "httpvideo" block then? I looked at the .pat file of the profile, i discovered that the code is same with what is used to block such embedded videos in mikrotik routers, infact i have used it and successfully block such videos.

    Any suggestion on how to block or filter such embedded video?

    Thanks.



  • You have to tweak the number of packets sent up to the layer7 daemon.
    Normally its sendign only 5 [packets which might not be enough for the regex to match.



  • how and where do i do the tweaking?

    does it mean after tweaking, i can use the "httpvideo" protocol?
    please a little more insight so i can get it done.



  • have you tried using flash instead in L7 filter?

    I am trying to limit bandwidth for youtube right now. I am using L7 with flash and httpvideo. It seems to be working in causing the videos not to load. I am actually trying to limit the bandwidth with 2m line. But instead, the videos just doesn't load for me. Once I disable that filter, youtube works again. So I am pretty sure that one of those filters are blocking youtube.



  • I can confirm, that httpvideo catches YouTube Video traffic. Maybe you have to specify WAN, because the regex maches the Response, not the request.

    have you tried using flash instead in L7 filter?

    I am trying to limit bandwidth for youtube right now. I am using L7 with flash and httpvideo. It seems to be working in causing the videos not to load. I am actually trying to limit the bandwidth with 2m line. But instead, the videos just doesn't load for me. Once I disable that filter, youtube works again. So I am pretty sure that one of those filters are blocking youtube.

    I was able to configure this Scenario with 2.1beta. So theoretically it should be possible :).



  • hmm..any notable problem with 2.1beta? If no major problem then I will upgrade to it. Else I have to stick with stable release.



  • Have now tried with 2.0.3. It works, too. Only difference to your config is that I filter both wan and lan.

    Or maybe your ethernet nic is not compatible with queues.



  • i am currently using 2.0.3.

    IP limit is working when I limit them to IP addresses. Only when I use limit on L7 youtube and flash, it cause that problem. Any idea how I can check what is the exact problem? Should I post my configs here? BTW, I am using LIMITER in the L7 config not QUEUE.


Locked