05-31-2014 07:27 AM - edited 03-04-2019 11:04 PM
i am trying to block torrent on cisco Router 3845 using NBAR but it is not blocking torrents. how can i block it properly. my NBAR config is as below.
class-map match-any p2p
match protocol bittorrent
match protocol edonkey
match protocol fasttrack
match protocol gnutella
match protocol kazaa2
match protocol winmx
match protocol blizwow
match protocol fatserv
match protocol gopher
match protocol kali
match protocol Konspire2b
match protocol youtube
!
!
policy-map p2p-Drop
class p2p
drop
interface GigabitEthernet0/0.4
description Servers-&-Switches-Vlan
encapsulation dot1Q 4
ip address 192.168.4.1 255.255.255.0
ip nbar protocol-discovery
ip nat inside
ip virtual-reassembly in
ip policy route-map PBR
service-policy input p2p-Drop
06-01-2014 03:52 PM
unfortunately with new bittorrent clients it's not easy to block all bittorrent traffic. you can try new NBAR PDLM's for bittorrent from Cisco Downloads and see if it can detect new bittorrent clients Traffic.
06-02-2014 05:04 AM
is there any way we can block torrents softwares? like their ports block in ACL?
06-02-2014 04:30 PM
New Torrent Clients can tunnel bittorrent traffic through HTTP and it makes them harder to block ,
you can create a whitelist of your common internet traffic ports , and rate limit rest of the ports
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide