Kerio Tech KERIO WINROUTE FIREWALL 6 User Manual Page 218
- Page / 368
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
218
Chapter 17
Advanced security features
17.1 P2P Eliminator
Peer-to-Peer (P2P) networks are world-wide distributed systems, where each node can repre-
sent both a client and a server. These networks are used for sharing of big volumes of data
(this sharing is mostly illegal). DirectConnect and Kazaa are the most popular ones.
In addition to illegal data distribution, utilization of P2P networks overload lines via which
users are connected to the Internet. Such users may limit connections of other users in the
same network and may increase costs for the line (for example when volume of transmitted
data is limited for the line).
WinRoute provides the P2P Eliminator module which detects connections to P2P networks and
applies specific restrictions. Since there is a large variety of P2P networks and parameters at
individual nodes (servers, number of connections, etc.) can be changed, it is hardly possible
to detect all P2P connections.
6
. However, using various methods (such as known ports, estab-
lished connections, etc.), the P2P Eliminator is able to detect whether a user connects to one
or multiple P2P networks.
The following restrictions can be applied to users of P2P networks (i.e. to hosts on which
clients of such networks are run):
• Blocking options — it is possible to block access to the Internet for a particular host or
to restrict the access only to selected services (e.g. web and e-mail),
• Bandwidth limitation — it is possible to decrease speed of data transmission of P2P
clients so that other users are not affected by too much data transferred by the line.
P2P Eliminator Configuration
P2P networks are detected automatically (the P2P Eliminator module keeps running). To set
the P2P Eliminator module’s parameters, go to the P2P Eliminator tab in the Configuration →
Advanced Options section.
As implied by the previous description, it is not possible to block connections to particular
P2P networks. P2P Eliminator allows complete blocking of all traffic (i.e. access to the Internet
from the particular host), enabling of only such services which are securely not associated
with P2P networks or limiting of bandwidth (transfer speed) that can be used by P2P networks
clients. The settings will be applied to all clients of P2P networks detected by P2P Eliminator.
Check the Inform user by email option if you wish that users at whose hosts P2P networks
are detected will be warned and informed about actions to be taken (blocking of all traffic /
According to thorough tests, the detection is highly reliable (probability of failure is very low).
6
- Kerio WinRoute Firewall 6 1
- Contents 3
- Quick Checklist 7
- Introduction 9
- 2.2 Conflicting software 10
- 2.3 System requirements 11
- 2.4 Installation - Windows 12
- Sharing 15
- 2.9 WinRoute Components 23
- WinRoute Administration 27
- Chapter 4 32
- 4.2 License information 33
- 4.6 User counter 45
- Network interfaces 47
- Figure 5.2 Editing interfaces 50
- Internet Connection 53
- 6.3 Connection Failover 62
- Chapter 6 Internet Connection 64
- 6.4 Network Load Balancing 66
- Traffic Policy 71
- 7.2 How traffic rules work 78
- 7.4 Basic Traffic Rule Types 90
- 7.5 Policy routing 95
- 7.8 Use of Full cone NAT 101
- 7.9 Media hairpinning 102
- Chapter 8 104
- 8.1 DNS module 104
- Figure 8.1 DNS settings 105
- 8.2 DHCP server 110
- 8.4 Proxy server 121
- 8.5 HTTP cache 124
- Bandwidth Limiter 130
- User Authentication 137
- Web Interface 141
- HTTP and FTP filtering 147
- 12.2 URL Rules 148
- 12.5 FTP Policy 162
- Antivirus control 167
- 13.3 HTTP and FTP scanning 172
- 13.4 Email scanning 176
- Definitions 180
- 14.2 Time Ranges 181
- 14.3 Services 183
- 14.4 URL Groups 187
- Description 189
- User Accounts and Groups 190
- 15.2 Local user accounts 193
- Step 1 — basic information 194
- 15.5 User groups 210
- Administrative settings 214
- 16.3 Update Checking 216
- Advanced security features 218
- Other settings 224
- 18.3 Relay SMTP server 229
- Status Information 231
- 19.4 Alerts 243
- Figure 19.12 Alert Definitions 244
- Basic statistics 248
- Figure 20.1 User statistics 249
- 20.2 Interface statistics 250
- Chapter 21 254
- Chapter 22 262
- 22.1 Log settings 262
- Figure 22.1 Log settings 263
- Chapter 22 Logs 264
- Syslog Logging 264
- 22.2 Logs Context Menu 265
- 22.3 Alert Log 269
- 22.4 Config Log 269
- 22.5 Connection Log 270
- 22.6 Debug Log 271
- 22.7 Dial Log 273
- 22.8 Error Log 275
- 22.9 Filter Log 276
- 22.10 Http log 277
- 22.11 Security Log 278
- 22.12 Sslvpn Log 280
- 22.13 Warning Log 280
- 22.14 Web Log 281
- Kerio VPN 283
- 23.1 VPN Server Configuration 284
- Chapter 23 Kerio VPN 320
- Paris branch office server 332
- Chapter 24 335
- Chapter 25 338
- 25.2 Configuration files 339
- Technical support 351
- 26.2 Tested in Beta version 352
- Legal Notices 353
- Used open source items 354
- Glossary of terms 357
© 2020, manymanuals.com. All rights reserved. | 1.738 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals