BT to download the current ban and disadvantages of common tools
In some corporate LAN, the school campus network, operators of the metro area, have emerged BT abuse network resources, impact on other normal business conduct. Therefore, in some circumstances the need to strictly limit the total user traffic or a complete ban on BT download BT download. In general, the current control of BT download mainly in the following ways:
First, the seed file download limit
Seed file download limit, which is probably the first we can think of. Method is relatively simple set of HTTP a good strategy to limit what to ban BT download. Of course this approach as long as those who download a little computer knowledge to know that a change of the extension can continue to download. In addition, if a site offers to download Torrent files than the standard port 80 port, this method will fail.
Second, visit the BT website restrictions
BT on some of the more popular sites, configure the security gateway URL filtering rules, and the interface functions to enable filtering Http_Filter to prohibit access to them can also be shielded part of the BT download. But while many BT sites, can not be fully shielded, and every day after another; the other hand, shielding site may cause some errors, resulting in a number of legitimate and reasonable can not access the site.
The prohibition of access to Tracker Server
Tracker is running on the server of a program, the program can track in the end how many people download the same file simultaneously. Tracker server connected to the client will receive a download list of officers, according BT will automatically connect to another machine to download. General access to the tracker server to HTTP form.
If the enterprise network gateway with a graphical management of the log, you can check the HTTP information on all the records, if BT download, then find the corresponding HTTP log messages according to message content can be Tracker server information, then you can in the device configuration rules to prohibit internal users access the server.
Tracker should be far less than the number of servers the number of popular BT site, many sites are transferred to other sites Torrent, Tracker, if you can find the server address, a number of shielding can also be shielded BT download. However, on the one hand the number of servers Tracker large screen server operation is very troublesome; the other hand, seed files on the Internet everywhere reproduced, transmitted, Tracker to find the real link to the server will be repeated, it is difficult to find the real BT seeds birthplace, making shielding server no start.
4, closed BT download port
BT on the LAN to resolve the harm, the most radical solution is to not allow BT download, BT general use of 6881 ~ 6889 TCP port, network administrators can determine changes in network traffic, the gateway will publish site-specific seed and port sealing of, the BT download software available in the Track of the information. But now most of the BT software can modify the port number, allowing the administrator can not really grasp all current BT port, on the other hand, too much may make some of the shielding port network access can not be normal, resulting in negative effects.
5, limit user bandwidth,
The reason why BT would endanger the local area network, because it takes up a lot of network bandwidth. Therefore, limiting the use of network bandwidth for each user, to a certain extent, ease the BT harm to the network; while some operators of the network, a complete ban on BT use is unreasonable. However, the restrictions of network bandwidth is a penal measure. The one hand it can not prohibit certain users BT download, on the other hand makes no BT download that users can not efficient and rational use of network resources, and this set is static and must be manually set to increase the operation difficulty.
6, limiting the maximum number of connections
Using the BT software, who will periodically download the registration to the tracker, so they understand the progress tracker, download direct connection between the data through the upload and download, this connection using the BitTorrent peer protocol, It is based on TCP. Therefore, network administrators can target these characteristics, the maximum number of connections on the TCP control to achieve the control of BT on the network bandwidth. However, although an administrator can modify the TCP link to limit the maximum number of years, but user can also modify the maximum number of links. Therefore, this restriction to just know a little basic computer knowledge is not the role of the user.
总之,通过上述业内常用的六条方案对BT的控制,虽然可以在一定程度上控制BT的下载,但是单靠单一的方案很难真正做到对BT的控制,而如果同时实施很多方案,工作量大,操作复杂,增加了管理成本;上述方案或多或少要用到硬件防火墙或者其他网络设备,而这些设备的采购成本较高,系统升级复杂,还需要对相关人员进行培训;最后,这些网络设备或者其他的软件系统对网络结构的要求较高,需要对网络系统进行调整,从而增加了系统实施的难度和成本。
聚生科技