Blocking P2P

Unanswered Question
Nov 4th, 2007
User Badges:

Hi,


I have a cisco 2811 router with advanced security IOS (Attached config). I want to block or give the least priority to P2P traffic and give high priority to other applications like http,https,smtp,voice chat, webcam etc since its a military camp and soldiers want to be in touch with their families. I am a CCNA and on my way to CCNP so I have a fair amount of exposures to cisco but I have never tried this.


How do I go about achieving the above?


Regards


Sarfaraz



Attachment: 
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
yuri_slobodyanyuk Sun, 11/04/2007 - 02:13
User Badges:

Blocking is like that,also if you do a search on cisco.com for "Network-Based Application Recognition" you'll get more ideas,or using Google for smthng like < class-map match-any match protocol fasttrack >. You can block it,you can rate-limit it,etc..


class-map match-any P2p

match protocol napster

match protocol fasttrack

match protocol gnutella

match protocol edonkey

match protocol winmx

match protocol bittorrent


policy-map Block-P2p

class P2p

drop


Interface Fa0/0

service-policy output Block-P2p



Regarding "..high priority to other applications like http,https,smtp,voice chat,.." is a bit wide of a range - priority over what other traffic? Or better yet - what exactly the problems users are experiencing with

what these applications?

Best regards,

Yuri

sarfarazkazi Sun, 11/04/2007 - 02:29
User Badges:

Dear Yuri,


Thanks for your reply. Its a military zone so users primarly use it to be in touch with their families using voice chat, webcams, online shopping, emails. Users complain that the voice calls get dropping, webcam streaming is very slow. I would like to give maximum bandwidth to these applications.


Regards


Actions

This Discussion