Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: Q for Sys admins: Blocking P2P

Hybrid View

  1. #1
    Senior Member
    Join Date
    Apr 2002
    Posts
    417

    Q for Sys admins: Blocking P2P

    I work for University and of couse we follow strict policies when it comes to copy write violations namely sharing pirated software on P2P file sharing software. I've had trouble with some users putting Kazaa, bearshare and limewire on computers on my network. Does anyone know if Kazaa,bearshare,napster,limewire and others use a common port to talk to each other? I'd like to block this at the router.

    I welcome any experience or suggestions in the matter.

    thanx,


  2. #2

    Re:Q for Sys admins: Blocking P2P

    i believe gnutella, and limewire is gnutella i think bearshare is too, is 6346

    napster is 6669 i think?

    and the other i don't know about.

  3. #3
    Moderator
    Good Guru
    Schotty's Avatar
    Join Date
    Jul 2001
    Location
    Milwaukee, WI
    Posts
    5,760

    Re:Q for Sys admins: Blocking P2P

    AFAIK if you goto the gnutella client homepages, they have the port lists that gnutella clients use. I would suppose going to a Napster clients' homepage that could be resolved (although Napster is pretty safe these days -- no more copyright infringment is allowed for free). I dont know of any clients that can dynamically change ports for situations like this (other than on direct user to user transfers). They still need to connect to the network, so blocking the main port should suffice.

  4. #4
    Junior Member
    Join Date
    Jan 2002
    Posts
    89

    Re:Q for Sys admins: Blocking P2P

    if not blocking the main port will at least drasitcally reduce the traffic caused by these. i read an article on /. about how much bandwidth P2P sucks up, not just with file transfers but with all the other crap that comes with them.

    make sure you try to block imesh too. i use that and they have a pretty big fanbase too.

    from a general look at my ports and connections when running kazaa, i think the port is 1214. when i block that port it appeared to do nothing to kazaa's abilities

  5. #5
    Moderator
    Good Guru
    Schotty's Avatar
    Join Date
    Jul 2001
    Location
    Milwaukee, WI
    Posts
    5,760

    Re:Q for Sys admins: Blocking P2P

    try this out for size, maybe it will assist a bit. There is a process in which a server handshakes a client to create a converstation -- block that. I know its a breeze in OpenBSD with pf. I have ZERO experience in Linux firewall solutions, and most Winderz firewalls have some sort of pulldown or check box to accomplish this.

    Just thought of this, this may help.

  6. #6
    Mentor
    Join Date
    May 2001
    Location
    New Jersey
    Posts
    1,473

    Re:Q for Sys admins: Blocking P2P

    cant you block them from downloading mp3's and mpegs rather than blocking the port?

    i read somewhere( i dont remember where but if find the link i'll post it ) something about kazaa or gnutells or one of theose file sharing programs no using only 1 port but a buch of ports just incase their nornal port is blocked.

    If you use the firewall to block mp3 or any kind of media file i think that would be easier.

    just my .02 cents

  7. #7
    Senior Member
    Join Date
    Apr 2002
    Posts
    417

    Re:Q for Sys admins: Blocking P2P

    how do you block MP3 transfers on a router?


  8. #8
    Moderator
    Good Guru
    Schotty's Avatar
    Join Date
    Jul 2001
    Location
    Milwaukee, WI
    Posts
    5,760

    Re:Q for Sys admins: Blocking P2P

    that will be rough.

    since it is just a file, the router will have no idea what it is. The best thing I can say is to use a proxy, and block certain file types.

  9. #9

    Re:Q for Sys admins: Blocking P2P

    You can either block the known ports at the router OR, you can block ALL ports and open the ones that you need.

    And yes, Kazaa is 1214

  10. #10
    Junior Member
    Join Date
    Jan 2002
    Posts
    89

    Re:Q for Sys admins: Blocking P2P

    even if you decided to block just mp3, i don't think that would exactly work, as it depends entirely on the protocol as to how the file is requested, and you'd prolly need to have special software to be able to detect when a gnutella client is asking for an mp3. also, there are legitimate reasons to download mp3's. i run the website for a youth symphony, and we put up mp3's of the concerts so parents can dl them and oooooh and aaaahh.

    also, it's more than just the file transfers that kill bandwidth when dealing with P2P. i read about an interesting article on slashdot, and it is very relevant to this topic and worth a read.

    http://slashdot.org/article.pl?sid=0...ead&tid=95

    that's about all i have to say for now.

    later guys

Similar Threads

  1. GeoIP Blocking
    By Hariharan in forum Linux - Software, Applications & Programming
    Replies: 2
    Last Post: 02-10-2011, 01:15 PM
  2. Blocking webservers
    By Lunke in forum Linux - Hardware, Networking & Security
    Replies: 2
    Last Post: 08-10-2004, 02:27 AM
  3. Calling all mail server admins
    By demian in forum Linux - Hardware, Networking & Security
    Replies: 4
    Last Post: 04-21-2004, 08:21 PM
  4. Blocking pop-ups? You're a thief!
    By cloverm in forum General Chat
    Replies: 18
    Last Post: 12-05-2002, 02:39 AM
  5. firewall blocking 68.*.*.* and 67.*.*.*
    By gjansky in forum Linux - Software, Applications & Programming
    Replies: 3
    Last Post: 03-08-2002, 10:40 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •