[strongSwan] How to block torrent traffic in StrongSwan?
Christoph Harder
charder at telco-tech.de
Tue Oct 1 13:43:17 CEST 2019
Hello,
in addition to blocking well known trackers, you could try to block the
bootstrap nodes to prevent users from getting connections to peers for
trackerless torrents.
E.g. dht.transmissionbt.com router.utorrent.com router.bittorrent.com
dht.transmissionbt.com
Best regards,
Christoph Harder
Am 01.10.19 um 13:37 schrieb Houman:
> Hello Volodymyr,
>
> Thank you for your email. I think DPI goes a step too far for privacy
> reasons. But I'm happy to go down the route of blocking well-known trackers.
> Is there a way to obtain the list from somewhere?
>
> Many Thanks,
> Houman
>
> On Sun, 29 Sep 2019 at 16:35, Volodymyr Litovka <doka.ua at gmx.com
> <mailto:doka.ua at gmx.com>> wrote:
>
> Hello, Houman,
>
> to be able to find and block torrent traffic, you need to implement DPI
> (Deep Packet Inspection) on your gateway and even this does not
> guarantee success, because modern torrent clients like uTorrent
> implement very sofisticated mimicry mechanisms and, from my experience,
> are very successful in passing DPIs, firewalls etc.
>
> Using iptables you can try to block well-know trackers, but this
> approach will require constant updating.
>
> On 29.09.2019 12:17, Houman wrote:
> > Hello,
> >
> > I would like to block VPN users from using torrents. I'm not sure if
> > this is something that can be done in StrongSwan settings, maybe
> there
> > is a way through IPTables to achieve this?
> >
> > Any advice would be appreciated,
> >
> > Many Thanks,
> > Houman
>
> --
> Volodymyr Litovka
> "Vision without Execution is Hallucination." -- Thomas Edison
>
More information about the Users
mailing list