Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?

To: James Brown <jbrownfirst@gmail.com>
Cc: debian-amd64@lists.debian.org, debian-laptop@lists.debian.org
Subject: Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
From: lsorense@csclub.uwaterloo.ca (Lennart Sorensen)
Date: Fri, 24 Jul 2009 13:13:11 -0400
Message-id: <[🔎] 20090724171310.GI2988@csclub.uwaterloo.ca>
In-reply-to: <[🔎] 4A6984DB.40208@gmail.com>
References: <[🔎] 4A5D52C7.6040305@gmail.com> <[🔎] 20090716041704.GE20736@debianrules.debiancolombia.org> <[🔎] 87ljmnogr2.fsf@delenn.ganneff.de> <[🔎] 4A608894.609@gmail.com> <[🔎] 20090717143054.GF2988@csclub.uwaterloo.ca> <[🔎] 4A657566.3020806@gmail.com> <[🔎] 20090721155112.GN2988@csclub.uwaterloo.ca> <[🔎] 4A66E22D.9010007@gmail.com> <[🔎] 20090722151948.GX2988@csclub.uwaterloo.ca> <[🔎] 4A6984DB.40208@gmail.com>

On Fri, Jul 24, 2009 at 01:54:35PM +0400, James Brown wrote:
> As a specialist in the matters of blocking P2P, could you advice any
> mesuares for users for avoding blocking P2P from company/country's
> firewall etc.?
> I am afraid that the terrible Pustin's dictatorial regim intend to take
> measures banning P2P, VoIP etc. in Russia:
> 
> http://www.point.ru/news/stories/20598/

I just have a perl script run every minute that checks the netfilter
connection tracking for things that behave like p2p traffic and then
firewalls that connection for an hour.  It has been rather effective
so far.  I had to add an exception for very low bandwidth p2p traffic in
order to allow skype.  Fortunately none of the actualy p2p file sharers
are willing to try and share files that slowly so it works OK.

Occationally something gets through in which case we just track down
who is flooding the internet link and go apply a clue bat. :)  One person
got annoying enough that they are now restricted to ftp, http and https
traffic only.  All other traffic is blocked for that user.  They haven't
complained yet.

Expensive packet inspection tools would probably work better, but I
don't have one and really don't want to have to have one.

-- 
Len Sorensen

Reply to:

References:
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: James Brown <jbrownfirst@gmail.com>
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: Aníbal Monsalve Salazar <anibal@debian.org>
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: Joerg Jaspert <joerg@debian.org>
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: James Brown <jbrownfirst@gmail.com>
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: lsorense@csclub.uwaterloo.ca (Lennart Sorensen)
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: James Brown <jbrownfirst@gmail.com>
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: lsorense@csclub.uwaterloo.ca (Lennart Sorensen)
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: James Brown <jbrownfirst@gmail.com>
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: lsorense@csclub.uwaterloo.ca (Lennart Sorensen)
- Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
  - From: James Brown <jbrownfirst@gmail.com>

Prev by Date: VM Ware Player under Debian Lenny AMD64 on laptop
Next by Date: Re: VM Ware Player under Debian Lenny AMD64 on laptop
Previous by thread: Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
Next by thread: Re: What is the matter with the "http://people.debian.org/~rafael/skype-amd64/"?
Index(es):
- Date
- Thread