blocking p2p on router 877

Unanswered Question
Mar 4th, 2009


Can anyone suggest how can I effectively block p2p traffic like Ares, Limewire or other with Cisco IOS 12.4(6) or higher? I tried NBAR but I guess there is no PDLM available for Ares for instance.

Many thanks for any suggestions.


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
wangliwei_01 Thu, 03/05/2009 - 17:25

if no PDLM,i think the router can block p2p very well,try to the PANABIT. you can google panabit,may be can help you

remi-reszka Fri, 03/06/2009 - 06:14


Thanks for the response. I searched for PANABIT and all I get is all results come with some chinese characters. I can't read anything. Wat's PANABIT anyway? How about using IPS to block all suspicious connections?


zenon_electronics Mon, 03/09/2009 - 07:40


to block p2p traffic you need to block all ports except these you really need.

For example block all ports except http, https, smtp, pop3, dns.

Becouse some of the p2p applications use port 80 to connect there is an options in firewall(classic or Zone-Based Policy Firewall) called protocol-violation and port-missue!

This options prevent non-HTTP traffic over port 80.

For Zone-Based Firewall reffer to this link:

remi-reszka Mon, 03/09/2009 - 07:50


Sounds like a very good idea. I am already looking into the concept and config of the ZFW so it should be up and running very soon.

Thanks a lot for your suggestions.


This Discussion