On Tue, 11 Oct 2005, Jason Dixon wrote:
> On Oct 11, 2005, at 11:15 AM, David Elze wrote:
>
> > Hi,
> >
> > I'm trying to block p2p traffic via pf on OpenBSD 3.x.
> >
> > Unfortunately, all new p2p-clients are able to use dynamic ports or
> > even
> > (ab-)use http-ports etc. so blocking well known p2p-ports is not
> > enough.
>
> http://marc.theaimsgroup.com/?l=openbsd-pf&m=104592911709710&w=2
While auth/socks and accountability is your long term solution; for
a quick stopgap:
http://www.webweaving.org/kzdetect/
http://wleiden.webweaving.org:8080/svn/node-config/factory/trunk/kzdetect/
may help.
Dw.
