[strongSwan] How to block torrent traffic in StrongSwan?

Volodymyr Litovka doka.ua at gmx.com
Sun Sep 29 17:35:21 CEST 2019


Hello, Houman,

to be able to find and block torrent traffic, you need to implement DPI
(Deep Packet Inspection) on your gateway and even this does not
guarantee success, because modern torrent clients like uTorrent
implement very sofisticated mimicry mechanisms and, from my experience,
are very successful in passing DPIs, firewalls etc.

Using iptables you can try to block well-know trackers, but this
approach will require constant updating.

On 29.09.2019 12:17, Houman wrote:
> Hello,
>
> I would like to block VPN users from using torrents. I'm not sure if
> this is something that can be done in StrongSwan settings, maybe there
> is a way through IPTables to achieve this?
>
> Any advice would be appreciated,
>
> Many Thanks,
> Houman

--
Volodymyr Litovka
   "Vision without Execution is Hallucination." -- Thomas Edison



More information about the Users mailing list