On Wed, 2013-02-20 at 11:58 +0200, Dmitry Korzhevin wrote: > Guys, i understand, that this is too frequent question, and i'm already > made solid investigation in google, but.. mabe you already have good > iptables rules to block such type of traffic (Bittorrent), or maby you > can give advice. What's your reason for blocking? Is it just to stop excessive use of bandwidth? If so, I'd recommend shaping the traffic instead of blocking, otherwise you just create an arms race whereby users will try and get around your blocks (and it's unlikely any block will be perfect). I've had quite good success with some rudimentary detection rules that just look for lots of traffic to lots of high port numbers. I wrote it up here: http://www.andybev.com/index.php/Fair_traffic_shaping_an_ADSL_line_for_a_local_network_using_Linux I've not updated the page for a while, but the concept should still work even if you need to adjust the rules. Andy -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
