From mboxrd@z Thu Jan  1 00:00:00 1970
From: Lars Gaarden <larsg@eurorights.org>
Date: Fri, 24 Jan 2003 23:57:41 +0000
Subject: Re: [LARTC] GNUTELLA on port 80
Message-Id: <marc-lartc-104345260219719@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-104345068717671@msgid-missing>
In-Reply-To: <marc-lartc-104345068717671@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

David DeLauro wrote:

[Filtering Gnutella/Kazaa on port 80]

>From reading the archives... it seems there is a iptables type solution (I
> built the iptables/nat+bridging patch into the kernel) but I haven't had
> any luck in finding it let alone another solution using tc/match filters.

You need a rule matching packet content. Do a packet dump of
kazaa/gnutella traffic and see if there is anything unique in the
packets that you can filter on (the hard part is not to get any false
positives/negatives).

One option could perhaps be to set up a transparent squid proxy and see
if it is possible for squid to do bandwidth limiting on requests
containing certain headers.

-- 
LarsG
Fight the EUCD! Find your local organization at
http://eucd.info/who.fr.php

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/