On 14-01-09 03:53 PM, George Stoynev wrote:
Hi all,
does anyone knows of effective way to block torrents altogether in a
home network? Friends of mine are struggling with this and asked me to
help. They provide Wi-Fi for their renters, have control over the
modem and router, but none over clients.
From what I know and have read the only somewhat effective way is to
have deep packet inspection firewall, which also doesn't work well
against encrypted torrent traffic. Port blocking doesn't work (but
will isolate the most computer savvy clients), OpenDNS didn't work as
well, blacklisting websites helps until some extent but is easy to
bypass. The budget is limited but they would buy equipment if
necessary (SOHO grade).
My idea is to start with setting up one Raspberry Pi between the modem
and the router. The Pi will act as proxy or L-7 firewall. There are
two unknowns here:
1. would the Pi be powerful enough to handle the traffic;
2. what would be the best software for this purpose;
Second option is to install DD-WRT or similar to compatible router and
try to do the firewalling from there. As advantage, I could split the
Wi-Fi on multiple SSIDs, which will isolate the offenders.
I was wondering if anyone has any suggestions/recommendations/ideas.
Thank you,
George Stoynev
You can use iptables of course (lots of google stuff on how to do this,
especially on openWRT), but for instance, you would not be able to block
me... it is a losing battle. Better to make a good TOS and suspend users
who break the rules? Or charge twice as much for users who use too much
bandwidth? I know this is not the solution you want, but I don't see how
you can stop people with the proliferation of torrent VPNs, encryption,
and other solutions like this.
Jer
_______________________________________________
mlug mailing list
mlug@listserv.mlug.ca
https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca
