Blocking BitTorrent

duozmo asked:

How can one block, or severely slow down, BitTorrent and similar peer-to-peer (P2P) services on one’s small office network?

In searching Server Fault I wasn’t able to find a question that served as a rallying point for the best technical ideas on this. The existing questions are all about specific situations, and the dominant answers are social/legal in nature. Those are valid approaches, but a purely technical discussion would be useful to a lot of people, I suspect. Let’s assume that you don’t have access to the machines on the network.

With encryption use increasing in P2P traffic, it seems like stateful packet inspection is becoming a less workable solution. One idea that seems to make sense to me is simply throttling down heavy users by IP, regardless of what they’re sending or receiving — but it doesn’t seem many routers support that functionality at the moment.

How can you throttle P2P/BitTorrent traffic?

My answer:

In a SOHO environment?

  • l7-filter is an extension to Linux iptables which allows firewall rules to match on application layer data in the packets. Add this in to an existing iptables firewall…
  • Remove the BitTorrent clients from users’ machines.

View the full question and any other answers on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.