Controlling P2P with PF
Darren Pilgrim
list_freebsd at bluerosetech.com
Tue Jan 20 04:14:52 UTC 2015
On 1/19/2015 8:06 AM, Odhiambo Washington wrote:
> Hello all,
>
> So I found this link while trying to figure out of PF can control P2P -
> ttp://www.benhup.com/?mf=freebsd&sf=freebsd8.2-p9_04_peerblock
>
> I tried using it, but I could still download using utorrent from my network.
>
> Does this mean I am beating a dead horse, or I have my filter rules in bad
> order or something I am missing?
Yes, you're beating a dead horse. A torrent client will use any open
port it can get, and the stuff you really do want to stop runs the
torrent over SSL (i.e., you can't tell it apart from HTTPS traffic).
All you can do is rate-limit the bandwidth hogs, then deal with people
upset about poor streaming video performance.
More information about the freebsd-pf
mailing list