• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Is it possible to block Kazaa completly with a comsumer-level router (like the Linksys BEFSR41)

M

MrBond

Diamond Member
I want to block Kazaa completly on my network (I'm thinking it's Kazaa Lite K++) because my upload is terrible and once it gets going it has the tendency to slow down browsing for the rest of the PCs on the network.

I've got a Linksys BEFSR41, and I've blocked ports 1000-4000 for all computers, but that doesn't seem to work, because apparently Kazaa just keeps trying ports until it finds one that works. I installed it on my PC to test it, and while it takes quite a bit to initially connect, it still connects to the server and lets you search.

Is there some port that Kazaa gives up after trying? Should I increase the range? I did a lot of googling, but I didn't find much other than blocking what I've already done (or using a linux based firewall and it doesnt' bother me that much to go to that effort)
 
not sure how to block it with a router but you could make it so the program cant be executed using group policy.

if you want help on this let me know

JB
 
nope, sorry.

not with most routers, though i do believe there is a way to route via the packets, not sure if (m)any routers will do that, you're gonna have to wait for someone else to respond to this.


i think there are linux programs that will sort the apckets for you.
 
I have Linux on a firewall/router that is running ClarkConnect and that you can configure it to block Kazaa and other programs.
 
I'm guessing you're using the home version of ClarkConnect Acey? Its seems like a pretty neat program but is there anything else that you guys know of which can block kazaa and similar apps but is a bit smaller? Also, the free home version doesn't support IPsec and other features that I'd like to use.
 
My D-Link DI-614+ appears to have provisions to block specific ports for any/all connected computers, that seems to be all that would be required to kill Kazza.

You can also setup a schedule so that the Kazza could run at times nobody would be likely to be using the Internet, have your cake and eat it too. 🙂
 
Kazaa will keep trying ports, including 80.

Last I knew you needed something that tore in the packet to determine the traffic type to do this.
 
If you have a spare box around that's at LEAST 300mhz and 256MB Ram, then you could build a SmoothWall 2.0 or IPCop 1.3 Firewall. After that you would have to use the Anti-FastTrack Mod There is a work in progress that will sorta make the install "spoonfed, fat,dumb and happy" ( LINUX Gurus HATE Easy ) 🙂

SmoothWall FT Mod

With this, the Content filter sets, and some of the other mods, you can take all enjoyment out of the Internet Experience for the troublemakers on your LAN. Though I tend to agree with MikeDub83. This is more of a human prob than a technical one.
 
If this is a single machine that your roommate is using as others have alluded to, why not set the u/l speed to the minimum (3kb/s) then set the registry key to read only? If this isn't the environment you're in then let us know what the situation is and we can probably come up w some evil ways to make life fun for those that make it fun for you.
 
Yup...kazaa can tunnel through port 80 and make itself look like http traffic to devices that dont do upper-layer inspection. The only reason they did that was to get past most firewall/routers. Well...it works.

You could setup a DNS server and redirect anything that's going to kazaa.com to something like 192.168.254.254 or something like that. That's what we did where I work.

Alternatively, you can do a nslookup on kazaa.com and block every IP thats listed at your router. Im sure your router can block IP's. Only thing about that is you need to stay on top of it, some of those sites change IP's every now and then.
 
What about editing his hosts file and pointing www.kazaa.com ( I believe it is the 1st place kazaa connects to) to something else. Point it to 127.0.0.1 🙂
 
It only looks to kazaa.com for the startup page, redirecting it elsewhere will just affect the startup page. What you need is a firewall that does stateful packet inspection or just to kick the ass of the person involved (might be cheaper and more fun).
 
Originally posted by: SoulAssassin
It only looks to kazaa.com for the startup page, redirecting it elsewhere will just affect the startup page. What you need is a firewall that does stateful packet inspection or just to kick the ass of the person involved (might be cheaper and more fun).
Click to expand...

As others have said, it proxies thru port 80. A packet filtering based firewall (including SPI) is uselss against it. Yu need an application level firewall and I am sure he can not afford s hardware based one.
 
Thanks for the suggestions guys.

Yeah, it's just one roomate, it's not a problem to tell him to stop uploading if he's here, but 9 out of 10 times it's a problem, he's never here to turn it off.

Ever since I blocked ports 1000-4000, it seems to have stopped being a problem. DC is pretty much lag-free for me now.
 
Originally posted by: MrBond
Thanks for the suggestions guys.

Yeah, it's just one roomate, it's not a problem to tell him to stop uploading if he's here, but 9 out of 10 times it's a problem, he's never here to turn it off.

Ever since I blocked ports 1000-4000, it seems to have stopped being a problem. DC is pretty much lag-free for me now.
Click to expand...

If that's the situation before, as I said earlier go in and change his u/l speed to the minimum. I can understand him wanting to leave it open but I can't imagine an objection to limiting his upload speed.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top