Bloking torrent

[gegham]

Hi

I don't want to allow torrent downloads in my network.

How to do that?
_____________________________________

I tried this:

I created Serivice "torrents"
    Protocol - TCP
    Source Port - Any
    Dest Port - Port range 6881 : 65535

and block that service in all Packets in Firewall.

And also bittorrent limiting rule is active in traffic shaping  

But torrent works with any port from mentioned range.

[gegham]

Is there any one who is successfully blocked active torrent clients?

[J. A. Calvo]

Hi,

You need to add a "application based" rule in Traffic Shaping for "p2p", you don't have to specify any ports. Just make sure your installed kernel is the "-ebox" version (check it with uname -a).

[gegham]

Calvo,

I did what you said

You need to add a "application based" rule in Traffic Shaping for "p2p", you don't have to specify any ports.

but it didn't helped.

It successfully blocked skype but not downloads from utorrent.
So! problem still exists, how can I block the traffic of torrent?

[lihnjo]

Create the rules for:

FIREWALL

Filtering rules for internal networks
•   TCP 20-21 [FTP]
•   TCP 22 [SSH]
•   UDP 53 [DNS]
•   UDP 123 [NTP]

•   TCP 80 [HTTP]
•   TCP 443 [HTTPS]


•   TCP 25 [SNMP]
•   TCP 465 [SNMPS]

•   TCP 110 [POP3]
•   TCP 995 [POP3S]

•   TCP 143 [IMAP]
•   TCP 993 [IMAPS]

Filtering rules for traffic coming out from eBox
•   eBox Administration

Filtering rules from external networks to eBox
•   NONE

Filtering rules from external networks to internal networks
•   NONE

PROXY
/Gateway/HTTP Proxy/General
•   Transparent Proxy:   Enable
•   Port:     3128
•   Cache files size (MB):     2048 MB
•   Default policy:   Filter


Filter Profiles
/Gateway/HTTP Proxy/Filter Profiles
Add new
•   Adding a new filter profile
•   Filter group: Allow Full
•   Add
•   Save changes


/Gateway/HTTP Proxy/Filter Profiles/default/Configuration
Content filter threshold
•   Threshold: Disabled


File extensions - Existing
/Gateway/HTTP Proxy/Filter Profiles/default/Configuration/ File extensions filtering

Set policy for all extensions
•   Allow all extensions: Disabled
•   Change [bottom of page]
•   Save changes


Block all except:
•   bin
•   cab
•   dll
•   doc
•   exe
•   pdf
•   xls
•   zip
 

File extensions - New
/Gateway/HTTP Proxy/Filter Profiles/default/Configuration/Domains filtering

Domains and URL rules
Add new file extensions and domains
•   3gp
•   aac
•   au
•   cda
•   dat
•   dif
•   divx
•   djvu
•   docx <- Allow
•   flv
•   flc
•   lha
•   lhz
•   mid   
•   midi   
•   mov   
•   movie   
•   mp4   
•   mpa   
•   mpe   
•   mpv4
•   pps
•   ppt <- Allow   
•   qt   
•   ra   
•   ram   
•   raw   
•   rm
•   rpm   
•   snd   
•   wav   
•   xlsx <- Allow
•   torrent   

•   Save changes


Blacklist
/Gateway/HTTP Proxy/Filter Profiles/default/Configuration/Domains filtering


Download file: http://www.shallalist.de/Downloads/shallalist.tar.gz

Domains lists files
Add new
Description: Shaillalist
File: (browse from your hard disk – [PATH\ shallalist.tar.gz])
Add

Categories  [BLOCK]
•   Adv
•   Downloads
•   Dynamic
•   Porn
•   Redirector
•   Remotecontrol
•   Warez
•   Webradio
•   Webtv

Cheers,

Edo
www.edin.ba

[gegham]

lihnjo, Thank you very mutch for your detailed answer. Your answers are more informative for newbies and not only. Actualy I asked the general question which complete answer will close the topics about that area. And I think this is a very good answer.
Thank you one more time and that would be more helpfull if the answers will be described like this one.

Cheers,

One thing only! ebox is not accepting space in HTTP Proxy/Filter Profiles/Filter group name, so the name "Allow Full" should be something like this "Allow_Full"

Have a nice day.