| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 87874 | 2008-03-07 18:40:00 | restricting traffic through router | limepile (96) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 647133 | 2008-03-07 21:46:00 | Well if it gets infected get the wife to fix it! We'll see what she says after that! What P2P program is he using at the mo?? Do you know?? Whats the model of your dynalink router? Does your router have an entry for apps like P2P programs? And are there any P2P programs listed?? If there is delete them. Like on this router (Dlink G604T), theres an apps option under advanced / virtual server. |
Speedy Gonzales (78) | ||
| 647134 | 2008-03-07 21:52:00 | QOS is not just for VOIP. If the router supports port based QOS then just enable it for the port he is connected to and set the required limit. Other option is to use the likes of IPCOP with layer 7 filtering. |
ughnz (8297) | ||
| 647135 | 2008-03-07 22:11:00 | Port blocking sometimes wont work - Lots of the P2P programs these days generate random ports and its a nightmare trying to block them all . I have been using IMLock ( . comvigo . com/buynow/index . php?app=ccp0&ns=display&ref=splash&sid=5pdp1dms69vk4156a7175cm5a8v2s2wd" target="_blank">www . comvigo . com) - Its not free, but the professional version is great(look at the features list on the left of the site) - the home version blocks many things, but the professional is needed to block P2P programs . It comes preloaded with many , but you can also add in your own programs to block . It simply stops the program from running - it can block many things that cause problems - including specific websites - the site closes and wont open . My son LOVES playing on Runescape - I have installed this program on his and my wifes PC ( he plays it on that to) SO FAR I have only had to activate the site block once as he wont do his homework sometimes or get off of it, the Program can be scheduled to allow/disallow at certain times, can be deactivated or activated at your will . Its password protected so any settings require a password to change . AND the good thing about it is its not shown in the add/remove programs - so you cant simple uninstall it . NOTE: Has a 7 day trial - sometimes just the knowledge that you WILL stop them if they don't listen is enough to slow it down . |
wainuitech (129) | ||
| 647136 | 2008-03-07 22:21:00 | Port blocking sometimes wont work - Lots of the P2P programs these days generate random ports and its a nightmare trying to block them all. Really? At home I just block all but ports 80 (http) and 443(ssh) works a treat. that and keyword blocking. |
bob_doe_nz (92) | ||
| 647137 | 2008-03-07 22:29:00 | Really? At home I just block all but ports 80 (http) and 443(ssh) works a treat . that and keyword blocking . Yes really! I set the ports to block certain things and the programs simply looked for open ports - and found them . Keyword blocking will knock out MANY items for homework / general use as well I'm also running servers that need remote access along with many other things - many programs use more than the standard ports you mention . Being a tech I can easily configure the ports - but remember who you are dealing with on this site - NON tech people simply wanting help - most of the time . Setting the router is easy to bypass - even pass worded . |
wainuitech (129) | ||
| 647138 | 2008-03-07 23:29:00 | Being a tech I can easily configure the ports - but remember who you are dealing with on this site - NON tech people simply wanting help - most of the time. Setting the router is easy to bypass - even pass worded. Very hard to bypass layer 7 filtering, even if you encrypt the payload, more so if you combine with snort and traffic sensing. Even thou IPCOP is not simple for non-technical people it is simple enough to use and configure with lots of howto guides with lots of screen shots to boot. |
ughnz (8297) | ||
| 647139 | 2008-03-07 23:32:00 | So instead of rubbishing other peoples suggestions on simple to use solutions - Tell this person how to do it , or point people in the right direction with links etc . Saying theres plenty of articles is a useless lead, most people will have looked as this poster has and cant find what he wants, making comments without providing actual help is pointless - about as good as the winning lotto numbers for last week . |
wainuitech (129) | ||
| 647140 | 2008-03-07 23:50:00 | So instead of rubbishing other peoples suggestions on simple to use solutions - Tell this person how to do it , or point people in the right direction with links etc . Saying theres plenty of articles is a useless lead, most people will have looked as this poster has and cant find what he wants, making comments without providing actual help is pointless - about as good as the winning lotto numbers for last week . Good place to start is www . ipcop . org Also was not rubbishing the suggestions, just commenting on the issue of how easy it is to bypass some of the common port blocking solutions you can do with a basic router, my bad on the quote . IPCOP and other standalone firewall solutions do give you allot of control over the internet connection and can be very good if you wont to control children's access without effecting your own to much . But I cannot help echo comments made by others in the many other threads that have come up on this issue that education and trust can be a very effective method of restricting internet access :) |
ughnz (8297) | ||
| 647141 | 2008-03-08 00:17:00 | Good place to start is www . ipcop . org Also was not rubbishing the suggestions, just commenting on the issue of how easy it is to bypass some of the common port blocking solutions you can do with a basic router, my bad on the quote . IPCOP and other standalone firewall solutions do give you allot of control over the internet connection and can be very good if you wont to control children's access without effecting your own to much . But I cannot help echo comments made by others in the many other threads that have come up on this issue that education and trust can be a very effective method of restricting Internet access :) Totally agree :thumbs: - biggest problem is you cant watch them 24 /7 and if they "dont listen / learn" thats when "effective measures" have to be put in place . Had that yesterday from a parent who's son was downloading through P2P - he thought it was a great joke until they asked me to do two things - 1 . Completely Lock out the Internet till Tuesday next week - password it and don't want to know what the password is - and return on Tuesday it unlock it again . I put in that IMLock as linked in Post# 13 ( Trial), allowed the Emails and thats all . Its set to allow the connection to the Internet again at 4 pm Tuesday, so I in case I cant get there on Tuesday the internet will go again as the parents requested . 2 . He was paying for the repairs / my time :eek: Can you guess the look on his face |
wainuitech (129) | ||
| 647142 | 2008-03-08 00:23:00 | Some parents are just too kind / lenient on their kids. When they use the net. Either deal with it now (if they use P2P programs), uninstall the program or remove the kid/s. Simple as that. Or suffer later, when all their computers are filled with malware and everything else. Its a bit too late saying duh, why is my pc infected, after it happens. And then blame the kid, its the parents fault for being too lenient, and not getting rid of the program, in the 1st place. Its a known fact that any P2P program, can screw a system up, if you dont know what you're getting / or doing, and if you dont scan whatever, BEFORE you use it / install it. They've only got themselves to blame. You give in to kids when theyre young, they'll expect the same thing, when they're older. And if they dont get it / their way, they'll pack a sad. I know. Seen it happen around here, not with myself, but with other people. Then you'll be sorry / regret it. |
Speedy Gonzales (78) | ||
| 1 2 3 | |||||