Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Magnet links

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 2 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      riddler
      last edited by

      Hi all,

      I'm trying to setup a very basic egress firewall that will block all outgoing traffic except for things that I really want to pass out. Apart from usual ports like 80, 443, 53 I would like to allow torrents to be downloaded which I will queue later. The problem I'm running into is with magnet links - they are trying to open UDP connections on ports 80, 1337, 6969 and range 6881-6999(I see those in pftop). If I allow all outgoing traffice everything works fine but if I block everything but allow outgoing UDP traffic on those ports ktorrent can't open magnets.

      Is there anything that I'm missing about magnet links? I don't see any other ports being opened when download starts(in a pass all out scenario).

      Thanks.

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by

        You do understand that people will be running p2p on all kinds of ports, not just a handful..  Pretty much all the high ports >1024 so if you want p2p to actually work, your not going to be able to block outbound traffic.

        Now your links might be a handful of ports, but once you get into a swarm you have no idea what port the other members of the swarm will be running their p2p clients on..  could be pretty much anything between 1024 and 65k

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.7.2, 24.11

        1 Reply Last reply Reply Quote 0
        • R
          riddler
          last edited by

          I solved this. I noticed that torrent works on random high ports so I limited bandwidth on all ports except on certain list of ports. I know that this is not a perfect solution but it's godo enough.

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator
            last edited by

            "I noticed that torrent works on random high ports"

            You noticed huh? ;) hehehehe  Ok

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.7.2, 24.11

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.