03-21-2016 11:00 AM - edited 03-05-2019 03:36 AM
hi there,
I'm trying to block torrents in my network and want to achieve this by next configuration:
Cisco_ISR(config)#policy-map P2P- DROP
Cisco_ISR(config)#class ALL-P2P-PROTOCOLS
03-21-2016 01:41 PM
What software version are you running on the 4451?
ps. You can't effectively stop P2P traffic anymore. This only catches all the older clients. The newer clients now all use random ports and encrypted traffic streams.
03-22-2016 01:47 AM
hi Philip,
I'm running 3.13.2S and I believe it has 15.4(3)S4 version inside.
I just want to block usual bittorrent traffic for start, P2P needs additional investigation - thanks for the info.
03-22-2016 12:08 PM
I have an inkling in the back of my mind this might be related to the code version you are using. Are you able to upgrade to something newer like 3.16.2S?
03-23-2016 03:11 AM
uhmm, I'll try it and report back.
thanks for the suggestion.
03-24-2016 03:45 AM
nope, it's not software version reason unfortunately. there is no such command even in suggested release by you. maybe command syntax was changed.
however I managed to block torrents in testing environment with the next configuration:
class-map match-any LIMIT-TOR
match protocol bittorrent
match protocol bittorrent-networking
exit
policy-map QOS-LIMIT-TOR-POLICY
class LIMIT-TOR
police cir 8000
confirm-action drop
exceed-action drop
violate-action drop
exit
exit
exit
int gig 0/0/0
ip nbar protocol-discovery
service-policy output QOS-LIMIT-TOR-POLICY
service-policy input QOS-LIMIT-TOR-POLICY
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide