[pfSense Support] how to block the bit torrent
Hi All, how to block the bit torrent in my nlan network.. and how to block the websites,and how to block the websites except some lan connection. please help me. Thank you, Regards, suresh
Re: [pfSense Support] how to block the bit torrent
You won't find much success in trying to block bittorrent with a firewall. Your best bet is to use IDS (eg: snort) or another sort of categorization software or appliance to identify who is using bittorrent and deal with them at layer 8 via company security policy. Torrenting is one place where you simply cannot deploy a fire-and-forget solution and hope for it to actually work. Regards, -Ian On Thu, Sep 1, 2011 at 9:38 AM, suresh suresh wrote: > Hi All, > > how to block the bit torrent in my nlan network.. and how to block the > websites,and how to block the websites except some lan connection. please > help me. > > Thank you, > > Regards, > suresh >
Re: [pfSense Support] how to block the bit torrent
we can install the snort in pfsense 1.2.3? On Thu, Sep 1, 2011 at 8:13 PM, Ian Bowers wrote: > You won't find much success in trying to block bittorrent with a firewall. > Your best bet is to use IDS (eg: snort) or another sort of categorization > software or appliance to identify who is using bittorrent and deal with them > at layer 8 via company security policy. Torrenting is one place where you > simply cannot deploy a fire-and-forget solution and hope for it to actually > work. > > Regards, > -Ian > > > On Thu, Sep 1, 2011 at 9:38 AM, suresh suresh > wrote: > >> Hi All, >> >> how to block the bit torrent in my nlan network.. and how to block the >> websites,and how to block the websites except some lan connection. please >> help me. >> >> Thank you, >> >> Regards, >> suresh >> > >
Re: [pfSense Support] how to block the bit torrent
pfsense is the freebsd, so one way or another you can install the snort. there is a pfsense package for it though for easy installation and maintenance. you may want to google IDS and how to tune it before deploying it. IDS isn't something you want to walk into blind. On Thu, Sep 1, 2011 at 11:04 AM, suresh suresh wrote: > we can install the snort in pfsense 1.2.3? > > > On Thu, Sep 1, 2011 at 8:13 PM, Ian Bowers wrote: > >> You won't find much success in trying to block bittorrent with a firewall. >> Your best bet is to use IDS (eg: snort) or another sort of categorization >> software or appliance to identify who is using bittorrent and deal with them >> at layer 8 via company security policy. Torrenting is one place where you >> simply cannot deploy a fire-and-forget solution and hope for it to actually >> work. >> >> Regards, >> -Ian >> >> >> On Thu, Sep 1, 2011 at 9:38 AM, suresh suresh > > wrote: >> >>> Hi All, >>> >>> how to block the bit torrent in my nlan network.. and how to block the >>> websites,and how to block the websites except some lan connection. please >>> help me. >>> >>> Thank you, >>> >>> Regards, >>> suresh >>> >> >> >
Re: [pfSense Support] how to block the bit torrent
if we disable the bit torrent using traffic shapers.. bit torrent will be block or what will happen.please help me Thank you, Regards, Suresh On Thu, Sep 1, 2011 at 8:44 PM, Ian Bowers wrote: > pfsense is the freebsd, so one way or another you can install the snort. > there is a pfsense package for it though for easy installation and > maintenance. you may want to google IDS and how to tune it before deploying > it. IDS isn't something you want to walk into blind. > > > On Thu, Sep 1, 2011 at 11:04 AM, suresh suresh > wrote: > >> we can install the snort in pfsense 1.2.3? >> >> >> On Thu, Sep 1, 2011 at 8:13 PM, Ian Bowers wrote: >> >>> You won't find much success in trying to block bittorrent with a >>> firewall. Your best bet is to use IDS (eg: snort) or another sort of >>> categorization software or appliance to identify who is using bittorrent and >>> deal with them at layer 8 via company security policy. Torrenting is one >>> place where you simply cannot deploy a fire-and-forget solution and hope for >>> it to actually work. >>> >>> Regards, >>> -Ian >>> >>> >>> On Thu, Sep 1, 2011 at 9:38 AM, suresh suresh < >>> suresh.notion...@gmail.com> wrote: >>> Hi All, how to block the bit torrent in my nlan network.. and how to block the websites,and how to block the websites except some lan connection. please help me. Thank you, Regards, suresh >>> >>> >> >
Re: [pfSense Support] how to block the bit torrent
savvy users will use a different port. if your goal is to say "we block bit torrent", this shouldnt matter. if your goal is to actually block bit torrent or successfully enforce security policy, this may not be sufficient. On Thu, Sep 1, 2011 at 11:32 AM, suresh suresh wrote: > if we disable the bit torrent using traffic shapers.. bit torrent will be > block or what will happen.please help me > > Thank you, > > Regards, > Suresh > > > On Thu, Sep 1, 2011 at 8:44 PM, Ian Bowers wrote: > >> pfsense is the freebsd, so one way or another you can install the snort. >> there is a pfsense package for it though for easy installation and >> maintenance. you may want to google IDS and how to tune it before deploying >> it. IDS isn't something you want to walk into blind. >> >> >> On Thu, Sep 1, 2011 at 11:04 AM, suresh suresh < >> suresh.notion...@gmail.com> wrote: >> >>> we can install the snort in pfsense 1.2.3? >>> >>> >>> On Thu, Sep 1, 2011 at 8:13 PM, Ian Bowers wrote: >>> You won't find much success in trying to block bittorrent with a firewall. Your best bet is to use IDS (eg: snort) or another sort of categorization software or appliance to identify who is using bittorrent and deal with them at layer 8 via company security policy. Torrenting is one place where you simply cannot deploy a fire-and-forget solution and hope for it to actually work. Regards, -Ian On Thu, Sep 1, 2011 at 9:38 AM, suresh suresh < suresh.notion...@gmail.com> wrote: > Hi All, > > how to block the bit torrent in my nlan network.. and how to block the > websites,and how to block the websites except some lan connection. please > help me. > > Thank you, > > Regards, > suresh > >>> >> >
RE: [pfSense Support] how to block the bit torrent
Get it, Read It. It will help a lot I think. http://www.amazon.com/pfSense-Definitive-Christopher-M-Buechler/dp/097903428 0
Re: [pfSense Support] how to block the bit torrent
suppose i block through the traffic shapers means what will happen if user changes bit torrent port in his/her machine only he/her download torrent or bit torrent automatically changes the port number start downloading.please help me. Thank you, Regards, Suresh On Thu, Sep 1, 2011 at 9:06 PM, Ian Bowers wrote: > savvy users will use a different port. if your goal is to say "we block > bit torrent", this shouldnt matter. if your goal is to actually block bit > torrent or successfully enforce security policy, this may not be sufficient. > > > On Thu, Sep 1, 2011 at 11:32 AM, suresh suresh > wrote: > >> if we disable the bit torrent using traffic shapers.. bit torrent will be >> block or what will happen.please help me >> >> Thank you, >> >> Regards, >> Suresh >> >> >> On Thu, Sep 1, 2011 at 8:44 PM, Ian Bowers wrote: >> >>> pfsense is the freebsd, so one way or another you can install the snort. >>> there is a pfsense package for it though for easy installation and >>> maintenance. you may want to google IDS and how to tune it before deploying >>> it. IDS isn't something you want to walk into blind. >>> >>> >>> On Thu, Sep 1, 2011 at 11:04 AM, suresh suresh < >>> suresh.notion...@gmail.com> wrote: >>> we can install the snort in pfsense 1.2.3? On Thu, Sep 1, 2011 at 8:13 PM, Ian Bowers wrote: > You won't find much success in trying to block bittorrent with a > firewall. Your best bet is to use IDS (eg: snort) or another sort of > categorization software or appliance to identify who is using bittorrent > and > deal with them at layer 8 via company security policy. Torrenting is one > place where you simply cannot deploy a fire-and-forget solution and hope > for > it to actually work. > > Regards, > -Ian > > > On Thu, Sep 1, 2011 at 9:38 AM, suresh suresh < > suresh.notion...@gmail.com> wrote: > >> Hi All, >> >> how to block the bit torrent in my nlan network.. and how to block the >> websites,and how to block the websites except some lan connection. please >> help me. >> >> Thank you, >> >> Regards, >> suresh >> > > >>> >> >
Re: [pfSense Support] how to block the bit torrent
if you use any technology to classify and/or block bit torrent at layer 4, all someone has to do is change their source port to something different, or proxy the connection so the destination port is different. Or if you're particularly unlucky, they might use VPN to mask it. This is why you cannot depend on a fire-and-forget solution to do all the blocking for you. it's better to identify the offending traffic, save some pcaps to show what the user was doing, then deal with the user themselves face to face or over email. Notify them that their activity is a breach of security policy. What is reading have you done on traffic shaping, packet filtering, IDS, etc? No offense, but I think you may lack some fundamental understanding of the technologies involved. Please take that as an observation only, I'm not talking down to you. You've asked a number of very basic questions today, so I'm trying to get a good handle of where you're at. Regards, - Ian On Thu, Sep 1, 2011 at 11:49 AM, suresh suresh wrote: > suppose i block through the traffic shapers means what will happen > > if user changes bit torrent port in his/her machine only he/her download > torrent or bit torrent automatically changes the port number start > downloading.please help me. > > Thank you, > > Regards, > Suresh > > > On Thu, Sep 1, 2011 at 9:06 PM, Ian Bowers wrote: > >> savvy users will use a different port. if your goal is to say "we block >> bit torrent", this shouldnt matter. if your goal is to actually block bit >> torrent or successfully enforce security policy, this may not be sufficient. >> >> >> On Thu, Sep 1, 2011 at 11:32 AM, suresh suresh < >> suresh.notion...@gmail.com> wrote: >> >>> if we disable the bit torrent using traffic shapers.. bit torrent will be >>> block or what will happen.please help me >>> >>> Thank you, >>> >>> Regards, >>> Suresh >>> >>> >>> On Thu, Sep 1, 2011 at 8:44 PM, Ian Bowers wrote: >>> pfsense is the freebsd, so one way or another you can install the snort. there is a pfsense package for it though for easy installation and maintenance. you may want to google IDS and how to tune it before deploying it. IDS isn't something you want to walk into blind. On Thu, Sep 1, 2011 at 11:04 AM, suresh suresh < suresh.notion...@gmail.com> wrote: > we can install the snort in pfsense 1.2.3? > > > On Thu, Sep 1, 2011 at 8:13 PM, Ian Bowers wrote: > >> You won't find much success in trying to block bittorrent with a >> firewall. Your best bet is to use IDS (eg: snort) or another sort of >> categorization software or appliance to identify who is using bittorrent >> and >> deal with them at layer 8 via company security policy. Torrenting is one >> place where you simply cannot deploy a fire-and-forget solution and hope >> for >> it to actually work. >> >> Regards, >> -Ian >> >> >> On Thu, Sep 1, 2011 at 9:38 AM, suresh suresh < >> suresh.notion...@gmail.com> wrote: >> >>> Hi All, >>> >>> how to block the bit torrent in my nlan network.. and how to block >>> the websites,and how to block the websites except some lan connection. >>> please help me. >>> >>> Thank you, >>> >>> Regards, >>> suresh >>> >> >> > >>> >> >
Re: [pfSense Support] how to block the bit torrent
as i'm sure you know, that book is based on the 1.x version. if you are using 2.x or about to, it may cause some confusion as things have been moved/changed... perhaps they have an errata update you can download or will... -g On Thu, Sep 1, 2011 at 11:37 AM, Ryan Rodrigue wrote: > Get it, Read It. It will help a lot I think. > > ** ** > > > http://www.amazon.com/pfSense-Definitive-Christopher-M-Buechler/dp/0979034280 > >
Re: [pfSense Support] how to block the bit torrent
There is a PFSense 2 book available for the Kindle or paperback - in Amazon Store - just search for PFSENSE On Sep 2, 2011, at 12:13 PM, greg whynott wrote: > as i'm sure you know, that book is based on the 1.x version. if you are > using 2.x or about to, it may cause some confusion as things have been > moved/changed... > > perhaps they have an errata update you can download or will... > > -g > > > > > On Thu, Sep 1, 2011 at 11:37 AM, Ryan Rodrigue > wrote: > Get it, Read It. It will help a lot I think. > > > > http://www.amazon.com/pfSense-Definitive-Christopher-M-Buechler/dp/0979034280 > >
Re: [pfSense Support] how to block the bit torrent
On Fri, Sep 2, 2011 at 12:23 PM, Glenn Kelley wrote: > There is a PFSense 2 book available for the Kindle or paperback - > in Amazon Store - just search for PFSENSE > Not official, and poorly done. Wouldn't recommend it, our 1.2.x book is more helpful with 2.0. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] how to block the bit torrent
On Fri, Sep 2, 2011 at 12:23 PM, Glenn Kelley wrote: > There is a PFSense 2 book available for the Kindle or paperback - in > Amazon Store - just search for PFSENSE I recommended the 1.2 book because he said he was running 1.2 - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] how to block the bit torrent
On 09/02/2011 12:36 PM, Chris Buechler wrote: > Not official, and poorly done. Wouldn't recommend it, our 1.2.x book > is more helpful with 2.0. Hi Chris, I own the 1.2.x book and found it very useful. Are there any remote plans for a 2.0 book once 2.0 (final) is out? Regards, Jorge - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] how to block the bit torrent
Thanks Chris - figured with the many changes from 1.2.x to 2 it still might be worth it. but I hear ya there :-) On Sep 2, 2011, at 4:18 PM, Jorge Fábregas wrote: > On 09/02/2011 12:36 PM, Chris Buechler wrote: >> Not official, and poorly done. Wouldn't recommend it, our 1.2.x book >> is more helpful with 2.0. > > Hi Chris, > > I own the 1.2.x book and found it very useful. Are there any remote > plans for a 2.0 book once 2.0 (final) is out? > > Regards, > Jorge > > - > To unsubscribe, e-mail: support-unsubscr...@pfsense.com > For additional commands, e-mail: support-h...@pfsense.com > > Commercial support available - https://portal.pfsense.org > - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
