[c-nsp] Dropping p2p traffic
Brian McMahon
brmcmaho at cabrillo.edu
Fri Jun 2 13:32:17 EDT 2006
On Jun 2, 2006, at 08:41, Bartosz Piec wrote:
> Hello,
>
> How to absolutely drop the p2p traffic? I've done it that way:
Honestly? The only way to *absolutely* ensure that you're not
carrying p2p traffic of any kind is:
interface xxx
shutdown
It's a never-ending game of hide-and-seek, and the hiders will always
be one step ahead of the seekers, so "perfect" will always be
unavailable. "Good enough" is possible, with effort.
Some people find that, rather than blocking the traffic outright
(which can trigger evasive action on the part of the p2p software),
it's more effective to use QoS rules to throttle p2p down to a small
slice of bandwidth. This may not be an option for you due to Layer 8
issues, but it's something to consider.
Good luck.
--
Brian McMahon <brian dot mcmahon at cabrillo dot edu>
Computer Networking and System Administration Instructor
Cabrillo College, Aptos, California
More information about the cisco-nsp
mailing list