Im getting into tc. How can I control P2P (peer to peer) traffic??? which filters??? any ideas??? Hugonik
http://www.ipp2p.org/ if you find something better, let me know, I need to block that ----- Original Message ----- From: "Hugo Martinez" <hugonik@gmail.com> To: <lartc@mailman.ds9a.nl> Sent: Friday, March 11, 2005 9:09 PM Subject: [LARTC] P2P> Im getting into tc. How can I control P2P (peer to peer) traffic??? > which filters??? any ideas??? > Hugonik > _______________________________________________ > LARTC mailing list > LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc >
Yes, there are different ways, but it will depends primarily on what p2p software is used. There is a lot of different ports used (by default) : http://www.farrokhi.net/blog/archives/000233.html And you can limit (hard way) the servers on which each peer to peers client connect at the initialisation....but it don''t works with client without "server mode" (ex: Kademelia). And for my advice..the best way....prioritize all your important flows...and p2p will go through the default class or a better solution with a sniffer and protocol analysis who mark packets. Good luck Hugo Erwan Le Doeuff ************************************************************ Project Manager of rcc project QoS HTB Power tool http://www.rcc-project.net ************************************************************ On Fri, 11 Mar 2005 15:09:58 -0500, Hugo Martinez <hugonik@gmail.com> wrote:> Im getting into tc. How can I control P2P (peer to peer) traffic??? > which filters??? any ideas??? > Hugonik > _______________________________________________ > LARTC mailing list > LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc >
Hi, erwan ... since November 26, 2003, kazaa and others P2P software has evolved, ...not soo shure that simple rules will stop them? is p2p sowtvare today totaly port independed, ... ? ----- Original Message ----- From: "erwan le doeuff" <erwan.ledoeuff@gmail.com> To: "Hugo Martinez" <hugonik@gmail.com> Cc: <lartc@mailman.ds9a.nl> Sent: Friday, March 11, 2005 9:49 PM Subject: Re: [LARTC] P2P> Yes, there are different ways, but it will depends primarily on what > p2p software is used. > There is a lot of different ports used (by default) : > http://www.farrokhi.net/blog/archives/000233.html > And you can limit (hard way) the servers on which each peer to peers > client connect at the initialisation....but it don''t works with client > without "server mode" (ex: Kademelia). > And for my advice..the best way....prioritize all your important > flows...and p2p will go through the default class or a better solution > with a sniffer and protocol analysis who mark packets. > > > Good luck Hugo > > > > Erwan Le Doeuff > ************************************************************ > Project Manager of rcc project QoS HTB Power tool > http://www.rcc-project.net > ************************************************************ > > > On Fri, 11 Mar 2005 15:09:58 -0500, Hugo Martinez <hugonik@gmail.com> > wrote: >> Im getting into tc. How can I control P2P (peer to peer) traffic??? >> which filters??? any ideas??? >> Hugonik >> _______________________________________________ >> LARTC mailing list >> LARTC@mailman.ds9a.nl >> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc >> > _______________________________________________ > LARTC mailing list > LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc >
mmm, it''s mostly port indep., i use l7-filter (l7-filter.sourceforge.net) for p2p filtering and it''s working great for me. cheers. pablo. ----- Original Message ----- From: "hiphin" <hiphin@cat-net.co.yu> To: <lartc@mailman.ds9a.nl> Sent: Friday, March 11, 2005 7:42 PM Subject: Re: [LARTC] P2P> Hi, erwan ... > > since November 26, 2003, kazaa and others P2P software has evolved, ...not > soo shure that simple rules will stop them? > is p2p sowtvare today totaly port independed, ... ? > > ----- Original Message ----- > From: "erwan le doeuff" <erwan.ledoeuff@gmail.com> > To: "Hugo Martinez" <hugonik@gmail.com> > Cc: <lartc@mailman.ds9a.nl> > Sent: Friday, March 11, 2005 9:49 PM > Subject: Re: [LARTC] P2P > > >> Yes, there are different ways, but it will depends primarily on what >> p2p software is used. >> There is a lot of different ports used (by default) : >> http://www.farrokhi.net/blog/archives/000233.html >> And you can limit (hard way) the servers on which each peer to peers >> client connect at the initialisation....but it don''t works with client >> without "server mode" (ex: Kademelia). >> And for my advice..the best way....prioritize all your important >> flows...and p2p will go through the default class or a better solution >> with a sniffer and protocol analysis who mark packets. >> >> >> Good luck Hugo >> >> >> >> Erwan Le Doeuff >> ************************************************************ >> Project Manager of rcc project QoS HTB Power tool >> http://www.rcc-project.net >> ************************************************************ >> >> >> On Fri, 11 Mar 2005 15:09:58 -0500, Hugo Martinez <hugonik@gmail.com> >> wrote: >>> Im getting into tc. How can I control P2P (peer to peer) traffic??? >>> which filters??? any ideas??? >>> Hugonik >>> _______________________________________________ >>> LARTC mailing list >>> LARTC@mailman.ds9a.nl >>> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc >>> >> _______________________________________________ >> LARTC mailing list >> LARTC@mailman.ds9a.nl >> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc >> > > > _______________________________________________ > LARTC mailing list > LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc > >
On Fri, Mar 11, 2005 at 03:09:58PM -0500, Hugo Martinez wrote:> Im getting into tc. How can I control P2P (peer to peer) traffic??? > which filters??? any ideas???I ended up with a combination of ipp2p and l7-filter, since they each seemed to pick up stuff the other missed. I used them to jump to connmark, and protected them in front with a connmark check so they didn''t waste time checking connections I already knew were P2P. And then anything with connmark went to an IMQ, which I was able to rate-shape depending on time of day. I however found that I ran out of memory, and had to turn down the aging of the conntrack list, on the theory that P2P traffic doesn''t spend a lot of time completely idle, being more inclined to short-lived but active connections. I did this on Debian Sarge, and it required kernel rebuilding, _and_ a rebuild of the iptables package. I can post up the patches I used, if you like. I haven''t updated it in a fair while, so there''s a reasonable chance it''s an older version of either ipp2p or l7-filter, or the IMQ patch. -- Paul "TBBle" Hampson, on an alternate email client.
Well, i''m using IPP2P to identify P2P packets and FAIRNAT to shape
them... and it''s working great. My box is a Slackware 10.1.
http://www.metamorpher.de/fairnat/
http://www.ipp2p.org
Have a nice shapping...
Regards,
LEANDRO TRAVAGLIA
On Fri, 11 Mar 2005 15:09:58 -0500, Hugo Martinez <hugonik@gmail.com>
wrote:
Im getting into tc. How can I control P2P (peer to peer) traffic???
which filters??? any ideas???
Hugonik
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc