1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Will one of these iptables scripts work in Tomato to beat sandvine?

Discussion in 'Tomato Firmware' started by ndoggac, Jun 27, 2008.

  1. ndoggac

    ndoggac Network Guru Member

  2. mstombs

    mstombs Network Guru Member

    Its been discussed before, it is understood the ISP sends a RST message to both ends of the communication to break the traffic (each end thinks the other has closed the link), so something like this may work if both parties have this in their firewall script

    Code:
    #Replace 6883 with your BT port
    BT_PORT=6883
    
    #Comcast BitTorrent seeding block workaround
    iptables -I FORWARD -p tcp --dport $BT_PORT --tcp-flags RST RST -j DROP
    It will of course block genuine RST messages, which means connections will hang around until timing out...
     
  3. nobugme

    nobugme Network Guru Registered

  4. ndoggac

    ndoggac Network Guru Member

    thanks nobugme, I put in the rules, I'll take a couple days and see if it makes a diff
     
  5. mstombs

    mstombs Network Guru Member

    If you copied those lines that add to your INPUT chain then it will not make a diff!
     
  6. Kye-U

    Kye-U Addicted to LI Member

    Does anyone have any iptables rules that work? If so, can they post the rules here?
     

Share This Page