Blocking P2P

Unanswered Question
Nov 4th, 2007

Hi,

I have a cisco 2811 router with advanced security IOS (Attached config). I want to block or give the least priority to P2P traffic and give high priority to other applications like http,https,smtp,voice chat, webcam etc since its a military camp and soldiers want to be in touch with their families. I am a CCNA and on my way to CCNP so I have a fair amount of exposures to cisco but I have never tried this.

How do I go about achieving the above?

Regards

Sarfaraz

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
yuri_slobodyanyuk Sun, 11/04/2007 - 02:13

Blocking is like that,also if you do a search on cisco.com for "Network-Based Application Recognition" you'll get more ideas,or using Google for smthng like < class-map match-any match protocol fasttrack >. You can block it,you can rate-limit it,etc..

class-map match-any P2p

match protocol napster

match protocol fasttrack

match protocol gnutella

match protocol edonkey

match protocol winmx

match protocol bittorrent

policy-map Block-P2p

class P2p

drop

Interface Fa0/0

service-policy output Block-P2p

Regarding "..high priority to other applications like http,https,smtp,voice chat,.." is a bit wide of a range - priority over what other traffic? Or better yet - what exactly the problems users are experiencing with

what these applications?

Best regards,

Yuri

sarfarazkazi Sun, 11/04/2007 - 02:29

Dear Yuri,

Thanks for your reply. Its a military zone so users primarly use it to be in touch with their families using voice chat, webcams, online shopping, emails. Users complain that the voice calls get dropping, webcam streaming is very slow. I would like to give maximum bandwidth to these applications.

Regards

Actions

This Discussion