Block BitTorrent access for all users on the network ( Sonicwall TZ-215 )

Bryan Pivik
Bryan Pivik used Ask the Experts™
on
Need to block network users from being able to access BitTorrent (BMTORRENT).   I have a Sonicwall TZ-215 along with the premium content filtering.  I can block the URL of the usage, but can not determined the proper ports to target the service to block.  

Goal is to not have to upgrade to the "Application Control" that can detect the signature of the traffic or such.  I am fine with blocking the defaults or making more difficult for the person.  I understand that they could use other methods to avoid detection.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Tom CieslikIT Engineer
Distinguished Expert 2017

Commented:
It is going to be hard to do it.

Bittorrent uses TCP to transfer files and UDP for searching. It will use port 80 if the default TCP ports 6881-6889,6969 and 8080 can not be reached. Some bittorrent clients also support HTTP downloading.To completely block BT, you must block UDP ports 1024-65534 in your router.
So like you see it's a lot and it can affect your other software network traffic.

I think better way is to block application using registry or Group policy
Here you can find fine article about it

https://www.howtogeek.com/howto/8739/restrict-users-to-run-only-specified-programs-in-windows-7/

Author

Commented:
Thank you so much Tom.  That is a great explanation of how the Bittorrent client works.  Brings great clarity to the issues I am having.  In my specific case I have the luxury of highly restricting an entire interface on the Sonicwall, that is for the WIFI access.  That is where the abuse is coming from and I can severely restrict no problem.    

My only question is, if I implement the restriction on the ports (excluding TCP 80 and 443) would that block that Bittorrent Access?
IT Engineer
Distinguished Expert 2017
Commented:
Yes,,, They not going to be able search for nodes, peers, Trackers and Seeds

Author

Commented:
Thank you Tom.  I will post back if there is still an issue.  This should be perfect for my case where I can make some rules that will aggressively filter the large range.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial