Topic: blocking emule and other p2p software

[blacksheep]

Hi

I need to block emule and other p2p software and was wondering if I could do this through SME server or any add on?

The main problem is emule can use any port including port 80 so am going to have to use something that sniffs the packets and bins any from emule or any other p2p software.

Any hints/ideas?

[p-jones]

There is a content filtering addon which can be located searching the archives which will probably block the e-mule url(s). I would expect that if you block those then you will have probaly closed the door to all e-mule traffic. Likewise Limewire. I have used it on V6.0 to block all sorts of things successfully. I dont know if it works on V6.5 or V7 though.

It was a while ago I set it up and I havent needed to revisit it since so I am a bit vague on all the details. As I say, I found it initially by searching the list but maybe someone else can point you to a more specific url with the appropiate rpm's and howto. If I find it I will post again.

[gregswallow]

I made a contrib for ipp2p (see ipp2p.org) for SME7, but it is not up to date for the latest kernel.  I'll try to get it up to date in teh next day or two.

Check here:
http://mirror.contribs.org/smeserver/contribs//gswallow/ipp2p-sme7/new/

[gdbs]

Thx Greg! I'm waiting for it too...

Is it possible to create add squidguard/dansguardian and ipp2p to SME7 as a default feature? it's so asked by anyone use sme!

[gregswallow]

New rpms are here for IPP2P (for example for i686):

http://mirror.contribs.org/smeserver/contribs//gswallow/sme7/addons-testing/ipp2p/e-smith-ipp2p-0.1.0-01.noarch.rpm
http://mirror.contribs.org/smeserver/releases/7/builds/rpms/RPMS/i686/ipp2p-0.8.0-01.i686.rpm
http://mirror.contribs.org/smeserver/releases/7/builds/rpms/RPMS/i686/kernel-module-ipp2p-0.8.0-01_2.6.9_22.0.2.EL.i686.rpm

If you have SMP kernel, or i586 then use the approprite rpms from the nearby folders.  

Just install the rpms and do this:

/sbin/e-smith/config setprop masq \
 ipp2p-ipp2p tcp \
 ipp2p-ares tcp \
 ipp2p-apple tcp \
 ipp2p-winmx tcp \
 ipp2p-soul tcp \
 ipp2p-bit tcp

then this:

/etc/rc7.d/S36masq restart

[lu2fgn]

Hi..

Went to the link and is not there any more, can you update it ...

Thanks

Alberto

[gregswallow]

I fixed d the link to the first rpm, but the others are out of date now - SME7RC1 uses a newer kernel.  I'll make new rpms soon.

[Franco]

What can I use to bring the same functionality to SME6? Any ideas? Right now I'm having to use pfsense in between the SME so I can block/control P2P.

[gdbs]

It seems that the RC2 and the final will have the same archi. Can we espect a release for rc2/final to ipp2p?

Thx again for your great work!

[gregswallow]

They are there - just install the ipp2p and kernel-module or kernel-smp-module (for multi-processor) for the the right arch., and the e-smith-ipp2p rpm and configure it according to the instructions given before:

http://mirror.contribs.org/smeserver/releases/7/builds/rpms/RPMS/i586/ipp2p-0.8.0-01.i586.rpm

http://mirror.contribs.org/smeserver/releases/7/builds/rpms/RPMS/i586/kernel-module-ipp2p-0.8.0-01_2.6.9_34.EL.i586.rpm

http://mirror.contribs.org/smeserver/releases/7/builds/rpms/RPMS/i586/kernel-smp-module-ipp2p-0.8.0-01_2.6.9_34.EL.i586.rpm

http://mirror.contribs.org/smeserver/releases/7/builds/rpms/RPMS/i686/ipp2p-0.8.0-01.i686.rpm

http://mirror.contribs.org/smeserver/releases/7/builds/rpms/RPMS/i686/kernel-module-ipp2p-0.8.0-01_2.6.9_34.EL.i686.rpm

http://mirror.contribs.org/smeserver/releases/7/builds/rpms/RPMS/i686/kernel-smp-module-ipp2p-0.8.0-01_2.6.9_34.EL.i686.rpm

http://mirror.contribs.org/smeserver/contribs//gswallow/sme7/addons-testing/ipp2p/e-smith-ipp2p-0.1.0-01.noarch.rpm

[gdbs]

Thx a lot, it works great!

Just something to add: don't forget to reconfigure your server to make it work.

[gregswallow]

After install ing the rpms do:

Code: [Select]

/sbin/e-smith/config setprop masq \
 ipp2p-ipp2p tcp \
 ipp2p-ares tcp \
 ipp2p-apple tcp \
 ipp2p-winmx tcp \
 ipp2p-soul tcp \
 ipp2p-bit tcp

and then...

Code: [Select]

/etc/rc7.d/S36masq restart

Do you still have to post-upgrade/reboot after that?  I haven't checked...

[gdbs]

yes, i've done it yesterday. after these 2 parts, emule still work fine.... so i've tried to reconf, and after that, connection to emule's servers didn't work anymore...

[kruhm]

do you think you could:
-rename the contrib to follow the new convention (smeserver-ipp2p)
-add a description.txt in the dir with:
-a description of the contrib
-the install process

FYI -added to contribs section.[/list]

[gdbs]

Hi,

Since i have install Dansguardian and change the transproxy port to use the dansguardian's one (8080)

Or maybe it's since the last updates....

Ipp2p doesn't work anymore....  Emule can download files et connect to servers!

Is there anything to change to make it work again?

I'v tried to make a rpm -Uvh to reinstall the 3 files and then to do:

/sbin/e-smith/config setprop masq \
ipp2p-ipp2p tcp \
ipp2p-ares tcp \
ipp2p-apple tcp \
ipp2p-winmx tcp \
ipp2p-soul tcp \
ipp2p-bit tcp

but after doing :

etc/rc7.d/S36masq restart

the server answer:

Shutting down IP masquerade and firewall rules:         Done!

Enabling IP masquerading: iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
done


Thx for your help!