[strongSwan] How to block torrent traffic in StrongSwan?

Houman houmie at gmail.com
Tue Oct 1 13:37:18 CEST 2019


Hello Volodymyr,

Thank you for your email.  I think DPI goes a step too far for privacy
reasons. But I'm happy to go down the route of blocking well-known trackers.
Is there a way to obtain the list from somewhere?

Many Thanks,
Houman

On Sun, 29 Sep 2019 at 16:35, Volodymyr Litovka <doka.ua at gmx.com> wrote:

> Hello, Houman,
>
> to be able to find and block torrent traffic, you need to implement DPI
> (Deep Packet Inspection) on your gateway and even this does not
> guarantee success, because modern torrent clients like uTorrent
> implement very sofisticated mimicry mechanisms and, from my experience,
> are very successful in passing DPIs, firewalls etc.
>
> Using iptables you can try to block well-know trackers, but this
> approach will require constant updating.
>
> On 29.09.2019 12:17, Houman wrote:
> > Hello,
> >
> > I would like to block VPN users from using torrents. I'm not sure if
> > this is something that can be done in StrongSwan settings, maybe there
> > is a way through IPTables to achieve this?
> >
> > Any advice would be appreciated,
> >
> > Many Thanks,
> > Houman
>
> --
> Volodymyr Litovka
>    "Vision without Execution is Hallucination." -- Thomas Edison
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20191001/72e5cb0d/attachment-0001.html>


More information about the Users mailing list