Q: How to block utorrent application and torrent large file downloading in squid?
Utorrent application uses all the unregistered posts 1025-65535 with random selection method. So blocking all those port numbers will block the bulk file downloading with utorrent application.
Edit the Squid.conf configuration file
[root@server ~]# vi /etc/squid/squid.conf
By default all the port numbers from 1025-65535 are configured as "Safe_ports" and allowed for browsing.
So disable that ACL by adding a "#" infront of the line (see below)
#acl Safe_ports port 1025-65535 # unregistered ports
And create a new ACL for the same port range just below the above line (with different acl name, like below)
acl Denied_ports port 1025-65535
And deny browsing to the websites with denied port numbers (both normal and secure)
http_access deny Denied_ports
http_access deny CONNECT Denied_ports
# now save the squid.conf file
Reload Squid server with new configuration.
[root@server ~]# service squid reload
Verify Denying
Verify denying with squid access.log file
[root@server ~]# vi /var/log/squid/access.log
Extra Tip: You can also block downloading of all ".torrent" files in squid (link below)
0 comments:
Post a Comment