Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
649
Views
0
Helpful
2
Replies

IOS Blocking Bittorrent

yelmuch
Level 1
Level 1

‎01-14-2008 05:51 AM - edited ‎03-10-2019 03:56 AM

Hi,

Is there a way to stop bittorrent. I have tried using match statements in class/policy-maps with no luck.

I've moved on to using FPM but still no luck. I believe the newer torrent clients encrypted communications.

Any Ideas?

Regards,

Steve

class-map type access-control match-any bittorrent

match start l2-start offset 54 size 32 regex "\x13BitTorrent\x20protocol"

match start l2-start offset 54 size 32 regex "GET\x20.*\?info_hash="

match start l2-start offset 54 size 32 regex "[a|A][z|Z][v|V][e|E][r|R]\x01"

policy-map type access-control NOP2P

class bittorrent

drop

int dialer1

service-policy type access-control input NOP2P

Labels:
0 Helpful
2 Replies 2

tstanik
Level 5
Level 5

‎01-22-2008 08:08 AM

You can create an ACL on the router to block P2P ports such as 6881 (Bittorrent). Following link may help you

http://www.cisco.com/en/US/prod/collateral/iosswrel/ps8802/ps6947/ps5207/ps6242/prod_white_paper0900aecd802efa46.html

0 Helpful

ckarwoski
Level 1
Level 1

‎02-28-2008 09:25 AM

You can use NBAR within IOS to block bittorrent. Here's an example of how to do it:

http://slaptijack.com/networking/controlling-peer-to-peer-p2p-traffic-with-cisco-nbar/

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card