Instead of blocking how about throttling to say 1KB/s so it is almost unusable for Bittorrent?
http://www.smallnetbuilder.com/lanwan/lanwan-howto/30565-taming-your-networks-bandwidth-hogs-part-1?showall=&start=2 Gavin Will | IT Systems Support | Exterity Ltd - BUILDING IPTV tel: +44 1383 828269 | fax: +44 1383 824905 | mob: + 44 7827 966328 e: gavin.w...@exterity.com | w: www.exterity.com | skype: exterity.gavin.will From: Martin Månsson [mailto:m...@bib.sdu.dk] Sent: 06 June 2011 11:35 To: support@pfsense.com Subject: [pfSense Support] l7 blocking Dear Users I have been trying to block p2p traffic, as its killing the internet line. I have recently asked a question if there was a way to get snort to block only that one traffic type and not the entire ip I was tolled to try layer 7 blocking which I now have. I have no problem blocking http, ftp or vnc, but bittorrent isn't blocking only if I enable bittorrent AND http to block then I can't get bittorrent peer connections And I really would like my users to be able to do a http request J Im using 2.0 r2 Best regards Martin Månsson IT-supporter, University Library of Southern Denmark Tel. +45 6550 2709 Fax +45 6315 0095 Email m...@bib.sdu.dk Addr. Campusvej 55, DK-5230 Odense M, Denmark ________________________________ Campusvej 55 · DK-5230 Odense M · Denmark · Tel. +45 6550 1000 · www.sdu.dk <http://www.sdu.dk/>
<<image001.jpg>>
