On Tue, 11 Oct 2005, Jason Dixon wrote: > On Oct 11, 2005, at 11:15 AM, David Elze wrote: > > > Hi, > > > > I'm trying to block p2p traffic via pf on OpenBSD 3.x. > > > > Unfortunately, all new p2p-clients are able to use dynamic ports or > > even > > (ab-)use http-ports etc. so blocking well known p2p-ports is not > > enough. > > http://marc.theaimsgroup.com/?l=openbsd-pf&m=104592911709710&w=2
While auth/socks and accountability is your long term solution; for a quick stopgap: http://www.webweaving.org/kzdetect/ http://wleiden.webweaving.org:8080/svn/node-config/factory/trunk/kzdetect/ may help. Dw.