https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882797#M456775 <P>Hi All</P><P></P><P>I got ASA 5510 with base license, can I block all Peer-2-Peer traffic from inside to outside. </P><P>ASA Giga 0/0 connected to ISP Router 2811</P><P>ASA Giga 0/1 connected to LAN switch 3560</P><P></P><P>Thanks upfront</P><P></P><P>cheers</P><P>Steve</P> Mon, 11 Mar 2019 22:56:44 GMT joseph.steve 2019-03-11T22:56:44Z https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882797#M456775 <P>Hi All</P><P></P><P>I got ASA 5510 with base license, can I block all Peer-2-Peer traffic from inside to outside. </P><P>ASA Giga 0/0 connected to ISP Router 2811</P><P>ASA Giga 0/1 connected to LAN switch 3560</P><P></P><P>Thanks upfront</P><P></P><P>cheers</P><P>Steve</P> Mon, 11 Mar 2019 22:56:44 GMT https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882797#M456775 joseph.steve 2019-03-11T22:56:44Z https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882798#M456778 <HTML><HEAD></HEAD><BODY><P>Steve, </P><P></P><P>In majority of cases you will not be able to block it completly, unless you go for full restriction of outgoing ports/protocols except the ones needed by your users and then you also need to check for integrity of those (HTTP inspection, proxy server for HTTP/HTTS request) </P><P></P><P>P2P are known to tunnel inside other protocols (HTTP and HTTPS are usually preferred) and mechanisms (toredo, 6to4, etc). Most use some level of encryption and even some IPSes are not able to cope with that - are are able to dectec only parts of traffic. Dynamic ports, upnp, megnet links, and a lot more. </P><P>And this is only for bittorrent. <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P><P></P><P>Marcin</P></BODY></HTML> Sat, 21 Apr 2012 08:01:57 GMT https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882798#M456778 Marcin Latosiewicz 2012-04-21T08:01:57Z https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882799#M456780 <HTML><HEAD></HEAD><BODY><P>Thanks</P><P>Any template from Cisco to block the minimum threats</P></BODY></HTML> Sat, 21 Apr 2012 09:40:38 GMT https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882799#M456780 joseph.steve 2012-04-21T09:40:38Z https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882800#M456782 <HTML><HEAD></HEAD><BODY><P>Have a look here:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808c38a6.shtml">http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808c38a6.shtml</A></P><P>But don't have too high hopes in this being the solution to all problems.</P><P></P><P>Seconds thing to consider is threat-detection to a degree it can stop some of the activity by very chatty hosts (which p2p usually are). </P><P></P><P>If you have an IPS/IDS somehwere you can detect un-encrypted part of P2P and drop it - signaures exist. </P><P></P><P>IOS has nbar - it can detect quite a lot of common p2p and (via class map/policy-map) drop traffic - again don't have high hopes for this as solution to fix all the problem.</P></BODY></HTML> Sun, 22 Apr 2012 08:49:13 GMT https://community.cisco.com/t5/network-security/block-peer-2-peer-traffic/m-p/1882800#M456782 Marcin Latosiewicz 2012-04-22T08:49:13Z