cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1019
Views
0
Helpful
1
Replies

How to Block Torrent traffic on ASA 5510 Details inside thanks

Lost & Found
Level 2
Level 2

Hi,

Good day 

I would like to ask how to block torrent traffic on asa 5510?

I tried to this config. but didn't work. any idea??

object-group service Blocked-UDP-Ports udp

description All ports blocked for Bit Torrent UDP

port-object range 10001 65535

port-object range 1024 1193

port-object range 1195 9999

object-group service BitTorrent-Tracker tcp

description TCP Ports used by Bit Torrent for tracker communication

port-object eq 2710

port-object range 6881 6999

 

access-list inside_access_in extended deny udp any any object-group Blocked-UDP-Ports log warnings inactive

access-list inside_access_in extended deny tcp any any object-group BitTorrent-Tracker log warnings inactive

 

Thank you in advance

1 Reply 1

kennepha
Cisco Employee
Cisco Employee

arvin_robel1,

Torrent clients will use random ports, so blocking specific ports will be an insufficient solution to deny all torrent traffic.

A search on the supportforums reveals another question similar to yours in which the recommended solution is to use MPF or NBAR (https://supportforums.cisco.com/discussion/11732491/blocking-torrents-asa)

However, with some of the technology that torrent clients provide such as encryption or header spoofing, it may still prove to be difficult to block torrent traffic via those methods. If you must absolutely block all torrent traffic, creating a whitelist for approved traffic may be your best bet.

-- Kenneth

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: