Displaying 20 results from an estimated 800 matches similar to: "Route P2P on separate link"
2004 Nov 18
5
Torrent support in IPP2P
Hello, I guess a few of you know about the iptables-p2p project at the
http://sourceforge.net/projects/iptables-p2p site. This suite has an
excellent filter of which I use today and its running very smoothly.
The main reason why I use this is because I desperately need to block
torrents. IPP2P does not do this at this time (it seems to me in the doc
at least). Is it maybe some way we could merge
2006 Aug 14
2
enable p2p to some host (ipp2p)
Hi
I using ipp2p to block p2p traffic.
How to enable to use p2p to me host in my net ?
I using this setup:
iptables -A FORWARD -m ipp2p --ipp2p --bit --apple --winmx --soul --ares -j DROP
This setup:
iptables -A FORWARD -m ipp2p --ipp2p --bit --apple --winmx --soul
--ares -d ! mynet -j DROP
iptables -A FORWARD -m ipp2p --ipp2p --bit --apple --winmx --soul
--ares -s ! mynet -j DROP
not
2004 Jun 08
3
Blocking p2p traffic
Greetings, I''ve searched, found ftwall, and some other commercial solutions, but am wondering if anyone on this list has any solutions using a linux firewall to block p2p traffic, more specifically Kazaa.
Walter Wickersham
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
2005 Sep 22
5
p2p: ARES
Hi,
I''ve a linux as router nat + firewall
(POLICY DROP for INPUT OUTPUT and FORWARD)
but, I''ve put next rules for p2p software
on FORWARD chain
[... snip ... ]
iptables -F FORWARD
iptables -P FORWARD DROP
iptables -A FORWARD -p tcp --dport 80 -j ACCEPT
iptables -A FORWARD -p tcp --dport 25 -j ACCEPT
[... snip ... ]
iptables -A FORWARD -m ipp2p --ipp2p -j ACCEPT
iptables -A
2005 Jun 22
3
block p2p: ARES
Hi....
I''m trying to setup a LAN router with P2P filter
but the problem is that can''t "catch" Ares.
There is a way to DROP "ares" p2p packets ?
I''ve tried with last "ipp2p" snapshot without sucess...
I''ve
Kernel 2.4.28
iptables 1.3.0
Various Patches from patch-o-matic-ng-20040621
iproute2-ss020116
IMQ Patch
Esfq Patch
2006 Feb 06
2
p2p marking, again
Hey, one more question for ipp2p
iptables -t mangle -A DSL-IN -p tcp -m ipp2p --ipp2p -j CONNMARK
--restore-mark
iptables -t mangle -A DSL-IN -p tcp -m mark ! --mark 0 -j ACCEPT
iptables -t mangle -A DSL-IN -p tcp -m ipp2p --ipp2p -j MARK --set-mark 7
iptables -t mangle -A DSL-IN -p tcp -m ipp2p --ipp2p -j CONNMARK --save-mark
iptables -t mangle -A DSL-IN -p udp -m ipp2p --ipp2p -j MARK
2006 May 07
5
Detecting p2p traffic
After varying degrees of success with p2p detection modules, I would like to
write the following rules using iptables to reliably identify p2p traffic:
1. If a host on the network has 5 or more simutaneous tcp connections to ports
above 1024, mark all connections to ports 1024 and above as 60.
2. If a host has received (or sent) UDP packets from 5 different hosts'' ports
above 1024 in a
2006 Feb 02
1
marking and limiting P2P packets
Hello, I am trying to shape p2p trafik to 256kbps on my dsl line. I wrote
this set of commands:
DEV=eth2
ip link set imq0 up
tc qdisc add dev imq0 root handle 1:0 htb default 21 r2q 2
tc class add dev imq0 parent 1:0 classid 1:1 htb rate 530kbit
tc class add dev imq0 parent 1:1 classid 1:20 htb rate 530kbit ceil 530kbit
prio 0
tc class add dev imq0 parent 1:1 classid 1:21 htb rate 64kbit
2006 Mar 23
11
linux box as vlan p2p limiter and firewall?
re
I would like to do some firewalling and p2p shaping/limiting on one of
the vlans in my network and I was thinking of using linux box as
transparent bridged firewall/limiter. For this I''m planning to use AMD64
2.2Ghz box with 2 1gbit NIC (Broadcom 5721), that will be bridged. The
box must be totally transparent and unseen in the network, as well as it
should have much influence on
2005 Mar 11
6
P2P
Im getting into tc. How can I control P2P (peer to peer) traffic???
which filters??? any ideas???
Hugonik
2006 Sep 12
3
Completely isolating P2P/BitTorrent traffic
Hi all,
I''m tring to isolate P2P traffic, specifically BitTorrent, for my QoS
scripts. I can''t seem to completely isolate ALL BitTorrent traffic.
I identify & mark packets and then use tc filters to put them into
appropriate classes. My firewall rules (below) do the markings. My VoIP
boxes'' and ICMP traffic get highest priority (mark 1). Then comes DNS, SSH,
2004 Jun 26
0
Fwd: Re: IPP2P: Simular project l7-filter.
--- Mike Mestnik <cheako911@yahoo.com> wrote:
> Date: Fri, 25 Jun 2004 09:51:21 -0700 (PDT)
> From: Mike Mestnik <cheako911@yahoo.com>
> Subject: Re: IPP2P: Simular project l7-filter.
> To: Eicke Friedrich <tady@gmx.net>
>
> --- Eicke Friedrich <tady@gmx.net> wrote:
> > Mike Mestnik wrote:
> > > http://sourceforge.net/projects/l7-filter/
2004 Apr 01
3
How to match string p2p traffic
I do not how to use match string to deny kazaa traffic, if I put the word
kazaa only http content is deny but the kazaa aplication is running, are
there special commands to match string?
thanks
_________________________________________________________________
Charla con tus amigos en lĂnea mediante MSN Messenger:
http://messenger.microsoft.com/es
2005 Jul 08
2
P2P shaping, won''t work
Hello, its me again, I won''t stop sending emails to this list, until I solve
this problem, I''ve tried several apps to create the right htb rules (even
made them my self), but I always get the same results, traffic gets shaped,
but I can''t use my bandwidth, and this is weird, because I should be able to,
also I keep seeing download being limited too, and that
2007 Feb 23
3
Conntrack table full and Heavy p2p loaded traffic manager ...
Hello
I''ve setuped a bridge with l7-filter and ipp2p. We have every day + or
- between 10Mbits and 30 Mbits P2P traffic from + or - 450 customers.
When traffic increase. I''ve got this kind of error message :
Feb 23 14:26:19 gestor1 kernel: printk: 38 messages suppressed.
Feb 23 14:26:19 gestor1 kernel: ip_conntrack: table full, dropping packet.
The server is celeron
2007 Nov 12
18
How to fight with encrypted p2p
Hi
I believe that whole question is in topic.
Is there any way to recognize ( and then shape ) p2p traffic which is encrypted?
Modern p2p clients have this ability moreover some of them have this enabled by default.
Now I''m using ipp2p for iptables but as I know this doesn''t recognize encrypted traffic.
Thanks in advance.
Pozdrawiam
Szymon Turkiewicz
2005 Apr 27
5
Shorewall and P2P traffic
Hi all,
I have just upgraded to a new satellite internet provider. I have two network cards - one with a public IP connected to my satellite router, and the second network card with private IP into my switch for the LAN. Shorewall firewall
My old satellite system is not being used.
Would it be possible/feasable to install a third network card into my Fedora Core 2 server, and then direct all
2005 Aug 17
5
1-800 number
Hi!
I'm searching for a 1-800 number that simply plays music for a long time
(>3mins) and no one picks up. I've bothered the AT&T lines so far when trying
out my SIP->PSTN connection but then always someone answered :-)
Anyone have a number?
Christoph
2005 Jul 09
2
P2P shaping working
Hello, it''s me again, finally p2p traffic is getting shaped, but now I still
have one problem: download seems to be affected when shaping the traffic, ack
packets are in the interactive queue too, as someone adviced me, what fixed
the problem was to change the rates, to match (the sum of all subclasses) the
root class rate, and to give the p2p class a very low rate (1k actually) and
2007 Mar 14
6
ipp2p problems
Hello list,
I''m newbie in this list. Well, i''m going crazy with ipp2p.
Googling i find a mini-howto but i''ve got problems.
1) Download:
* iptables-dev (apt-get)
* kernel-headers-2.x.x (your kernel, "uname -r")
* src of your iptables (iptables -V and apt-get source)
* ipp2p-0.8.0.tar.gz (stable)
2) untar ipp2p and cd ipp2p
3) Edit Makefile, if it''s