Good point, I see what you mean now. Will give it a shot
-----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Maicon Vinicius Nunes Sent: 12 November 2010 02:21 PM To: Mikrotik discussions Subject: Re: [Mikrotik] advanced p2p blocking That way doesn't work for me. Seems to me (I really don't know the theory) in case of encrypted torrent connections first happens a non-encrypted connection, then this connection is closed and a new encrypted connection is established. So the L7 filter doesn't match the encrypted connections, and the traffic goes free. Adding the addresses to an Address-List makes any connections with any kind of cryptography from anywhere being shaped on queue tree. Non-encrypted connections should work without the address-list. Maicon On 12/11/2010, at 09:58, james wrote: > Hi Maicon > > Are you sure you need to add the ip's to a src and dst address list? > > I used the L7 regex (thanks for the tip) and marked-connection then > mark-packet. > > Seems to work will in my queues without needing an address list.. > > -----Original Message----- > From: [email protected] > [mailto:[email protected]] On Behalf Of Maicon Vinicius > Nunes > Sent: 12 November 2010 12:12 PM > To: Mikrotik discussions > Subject: Re: [Mikrotik] advanced p2p blocking > > I'm using Mikrotik default p2p matcher and L7 regex. But these matchers only > catch the start of connection, so to shape traffic you need to add src and > dst address to an Address List and control traffic per IP. > > This way is working fine in my tests, with uTorrent cryptographed > connections. > > Maicon Nunes > > On 12/11/2010, at 04:29, james wrote: > >> Hi All >> >> >> >> I'm working on a QoS system but that default MikroTik p2p matcher does not >> work well. Most of the p2p still gets through. >> >> >> >> Is there another way of identifying p2p? >> >> >> >> Thanks >> >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: > <http://www.butchevans.com/pipermail/mikrotik/attachments/20101112/57931d8e/ > attachment.html> >> _______________________________________________ >> Mikrotik mailing list >> [email protected] >> http://www.butchevans.com/mailman/listinfo/mikrotik >> >> Visit http://blog.butchevans.com/ for tutorials related to Mikrotik > RouterOS > > _______________________________________________ > Mikrotik mailing list > [email protected] > http://www.butchevans.com/mailman/listinfo/mikrotik > > Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS > > _______________________________________________ > Mikrotik mailing list > [email protected] > http://www.butchevans.com/mailman/listinfo/mikrotik > > Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS _______________________________________________ Mikrotik mailing list [email protected] http://www.butchevans.com/mailman/listinfo/mikrotik Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS _______________________________________________ Mikrotik mailing list [email protected] http://www.butchevans.com/mailman/listinfo/mikrotik Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS
