blocking port 6346

The most common Gnutella port is 6346. Block this and you will stop

99% of traffic.

but how can i block port 6346..

thanks krunal

Reply to
jariwalakrunal
Loading thread data ...

Here is a simple link defining how to create an access-list which would then be applied either incoming or outgoing on your designated interface:

formatting link
Additionally something that works well alongside common filtering rules to mitigate file sharing and other such things is NBAR and can be referenced here:

formatting link
Good luck. m.

Reply to
M Gillespie

Use a ACL to block this: access-list 102 deny tcp any any eq 6346 access-list 102 permit ip any any

J>

Reply to
Jon L. Miller

Failed to mentioned that you'll need to assign this rule to a interface as either in or out (incoming rule or outgoing rules). ex: int dialer0 access-group 102 in

*note* This will prevent packets destined to port 6346 from coming in on the fialer0 interface or

int dialer0 access-group 102 out

note* This will prevent packet destined to port 6346 going out.

or maybe in your case you can do both in and out on the same interface. One thing to keep in mind and that is in general you want the rule closest to the source. Therefore if you want to block incoming from the internet use the dialer0 or whatever is connected to the Internet. If you suspect (and I think this is the case) it's users on the internal LAN that is initiating the requests apply the rule to the Interface that is connected to the LAN (FastEthernet or what have you).

Jon

Reply to
Jon L. Miller

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.