On Thu, April 6, 2006 11:11 am, Rogelio Serrano wrote: > there is no way you can stop p2p. when the packets are all encrypted > then you are stumped. > > You can use the suggested solutions but you cant stop them all. And it > takes only one guy to successfully connect to any p2p network and hog > all your bandwidth.
i agree. blocking via ports can't help. p2p apps are port hoppers. you can block them via application layer as somebody else suggested, however i agree with rogelio, application layer or any iptables plugins mentioned before on this thread will be useless when p2p developers start using secure transport methods (e.g. ssl). in fact, they're starting to do it now! > The only way is limit bandwidth. You should try to look at htb and > cfq. but this is hair pulling territory. YMMV. this is one way. another way is the "social way". you can setup an authenticating gateway. this does not block p2p, but at least, the user will know that they'll can be easily tracked and can be held responsible if some problems arose because of p2p usage. _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
