cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
439
Views
0
Helpful
7
Replies

Blocking limewire

raimj
Level 1
Level 1

How can I block Lime wire on my router 2800 I tried build in feature through SDM but limewire still works. I even tried to block port 6346-47. no luck,,,,,,,Please help.

7 Replies 7

This is kind of challenging as P2p Gnutella uses any TCP/UDP open ports to communicate to the other P2P host.

Configuration like NBAR should help:

class-map match-any p2p

match protocol gnutella file-transfer *

I already tried this class map but limewire is still able to download....

I'm dealing with the same issue:

NBAR protocol-discovery SEES gnutella traffic but it never DROPS it per the policy.

I'll be watching this post to see if a solution presents itself.

I got this config on my fa0/0 but lime wire still able to download...........any ideas...

class-map match-any sdm_p2p_kazaa

match protocol fasttrack

match protocol kazaa2

class-map match-any sdm_p2p_edonkey

match protocol edonkey

class-map match-any sdm_p2p_gnutella

match protocol gnutella file-transfer "*

class-map match-any sdm_p2p_bittorrent

match protocol bittorrent

!

!

policy-map sdmappfwp2p_AM-firewall

class sdm_p2p_edonkey

drop

class sdm_p2p_gnutella

drop

class sdm_p2p_kazaa

drop

class sdm_p2p_bittorrent

drop

It seems from the previous posts NBAR is in use to achieve the aim of blocking or dropping Limewire traffic. The issue I/we have arrived at is that NBAR sees the traffic (at least in my case) but doesn't drop it per the policy map. From my router this AM I see this:

show ip nbar protocol-discovery

gnutella Byte count in 1235245 Byte count out 52201940

show policy-map (on the interface in use)

Match: protocol gnutella file-transfer "*"

0 packets, 0 bytes

5 minute rate 0 bps

I'm still trying to use NBAR to Drop gnutella file-transfer traffic. Sadly this still isn't happening, here is the config to class and drop; any suggestions on this config?

class-map match-any Crap

match protocol bittorrent

match protocol edonkey

match protocol gnutella file-transfer "*"

match protocol fasttrack file-transfer "*"

match protocol h323

!

!

policy-map drop-Crap

class Crap

drop

interface FastEthernet0/0

***

service-policy input drop-Crap

Thoughts?

Thanks

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: