防火墙过滤-P2P协议过滤
防火墙过滤-P2P协议过滤Peer-to-peer协议即我们所说的用于主机间点对点传输p2p。这个技术有许多优秀的应用如Skype,但同时也带了需要的为许可的软件和媒体在网络中泛滥。甚至影响到http 和e-mail 的正常使用。RouterOS 能识别大多P2P协议的连接,并能通过QOS 进行过滤,丢弃所有的P2P 协议: /ip firewall filter>add chain=forward p2p=all-p2p action=drop /ip firewall filter>print chain=forwardFlags: X - disabled, I - invalid, D -dynamic0 chain=forward action=drop p2p=all-p2p能探测到该协议的列表:• Fasttrack (Kazaa,KazaaLite, Diet Kazaa, Grokster, iMesh, giFT, Poisoned, mlMac)• Gnutella (Shareaza,XoLoX, , Gnucleus, BearShare, LimeWire (java), Morpheus, Phex,Swapper,Gtk-Gnutella (linux), Mutella (linux), Qtella (linux), MLDonkey, Acquisition(MacOS), Poisoned, Swapper, Shareaza, XoloX, mlMac)• Gnutella2 (Shareaza,MLDonkey, Gnucleus, Morpheus, Adagio, mlMac)• DirectConnect (DirectConnect(AKA DC++), MLDonkey, NeoModus Direct Connect,BCDC++, CZDC++ )• eDonkey (eDonkey2000,eMule, xMule (linux), Shareaza, MLDonkey, mlMac, Overnet)• Soulseek (Soulseek,MLDonkey)• BitTorrent (BitTorrent,BitTorrent++, uTorrent, Shareaza, MLDonkey, ABC, Azureus,BitAnarch, SimpleBT,BitTorrent.Net, mlMac)• Blubster (Blubster,Piolet)• WPNP (WinMX)• Warez (Warez, Ares; starting from 2.8.18) –该协议能被丢弃掉(drop),但不能被限制速度试试看,验证下
页:
[1]