Community discussions

MikroTik App
 
dolanp
newbie
Topic Author
Posts: 29
Joined: Sat Jun 30, 2007 9:08 pm

P2P L7 Script

Tue Jan 01, 2008 10:45 pm

I am new to MT and need help to block Gnutella. I am using V3.0rc13. I have the regexp scripts but can someone give a quick example what I need to do with the script.

Regards
Paul
 
User avatar
antefe
Frequent Visitor
Frequent Visitor
Posts: 63
Joined: Fri Oct 12, 2007 12:36 pm
Location: Crete-Greece

Re: P2P L7 Script

Tue Jan 08, 2008 12:08 pm

I'm not sure how you can block it with L7, but you can certainly block it through ip > firewall > Filter Rules "add chain=forward action=drop p2p=gnutella"
 
dolanp
newbie
Topic Author
Posts: 29
Joined: Sat Jun 30, 2007 9:08 pm

Re: P2P L7 Script

Sat Jan 19, 2008 10:38 pm

Thanks for your reply. I have done exactly that but limewire still can connect and download. It is not the encrypted version so I presume it should work but it does not .

Any ideas

Paul
 
yudigadget
Frequent Visitor
Frequent Visitor
Posts: 60
Joined: Fri Mar 23, 2007 1:09 pm

Re: P2P L7 Script

Mon Aug 04, 2008 5:47 am

Thanks for your reply. I have done exactly that but limewire still can connect and download. It is not the encrypted version so I presume it should work but it does not .

Any ideas

Paul
I had same problem with Limewire, our customer using this P2P software to download music, etc and it slow down our internet speed.

ip firewall filter print
3 chain=forward action=drop p2p=all-p2p

4 chain=forward action=drop layer7-protocol=gnutella

The gnutella on Layer 7 Protocol:
^(gnd[\x01\x02]?.?.?\x01|gnutella connect/[012]\.[0-9]\x0d\x0a|get /uri-res/n2r\?urn:sha1:|get /.*user-agent: (gtk-gnutella|bearshare|mactella|gnucleus|gnotella|limewire|imesh)|get /.*content-type: application/x-gnutella-packets|giv [0-9]*:[0-9a-f]*/|queue [0-9a-f]* [1-9][0-9]?[0-9]?\.[1-9][0-9]?[0-9]?\.[1-9][0-9]?[0-9]?\.[1-9][0-9]?[0-9]?:[1-9][0-9]?[0-9]?[0-9]?|gnutella.*content-type: application/x-gnutella|...................?lime)

I use mikrotik 3.2 DOM license

normis or somebody can help with this case??

thanks..