08-28-2008 11:48 AM - edited 03-03-2019 11:19 PM
How can I block Lime wire on my router 2800 I tried build in feature through SDM but limewire still works. I even tried to block port 6346-47. no luck,,,,,,,Please help.
08-28-2008 11:57 AM
This is kind of challenging as P2p Gnutella uses any TCP/UDP open ports to communicate to the other P2P host.
Configuration like NBAR should help:
class-map match-any p2p
match protocol gnutella file-transfer *
08-28-2008 12:16 PM
I already tried this class map but limewire is still able to download....
08-28-2008 12:40 PM
I'm dealing with the same issue:
NBAR protocol-discovery SEES gnutella traffic but it never DROPS it per the policy.
I'll be watching this post to see if a solution presents itself.
08-29-2008 06:27 AM
I got this config on my fa0/0 but lime wire still able to download...........any ideas...
class-map match-any sdm_p2p_kazaa
match protocol fasttrack
match protocol kazaa2
class-map match-any sdm_p2p_edonkey
match protocol edonkey
class-map match-any sdm_p2p_gnutella
match protocol gnutella file-transfer "*
class-map match-any sdm_p2p_bittorrent
match protocol bittorrent
!
!
policy-map sdmappfwp2p_AM-firewall
class sdm_p2p_edonkey
drop
class sdm_p2p_gnutella
drop
class sdm_p2p_kazaa
drop
class sdm_p2p_bittorrent
drop
08-29-2008 09:33 AM
08-29-2008 09:47 AM
It seems from the previous posts NBAR is in use to achieve the aim of blocking or dropping Limewire traffic. The issue I/we have arrived at is that NBAR sees the traffic (at least in my case) but doesn't drop it per the policy map. From my router this AM I see this:
show ip nbar protocol-discovery
gnutella Byte count in 1235245 Byte count out 52201940
show policy-map (on the interface in use)
Match: protocol gnutella file-transfer "*"
0 packets, 0 bytes
5 minute rate 0 bps
09-15-2008 07:27 AM
I'm still trying to use NBAR to Drop gnutella file-transfer traffic. Sadly this still isn't happening, here is the config to class and drop; any suggestions on this config?
class-map match-any Crap
match protocol bittorrent
match protocol edonkey
match protocol gnutella file-transfer "*"
match protocol fasttrack file-transfer "*"
match protocol h323
!
!
policy-map drop-Crap
class Crap
drop
interface FastEthernet0/0
***
service-policy input drop-Crap
Thoughts?
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide