Many businesses and organizations desire to block Torrents because of the substantial amount of bandwidth this type of traffic consumes as well as its use in many cases to download illegal or explicit content. However, torrent traffic is almost impossible to block, given the nature of its operation. Torrenting applications are not limited to a single port or protocol, so basic firewall rules cannot effectively stop it. With the advent of WebRTC, torrent traffic can even take place over HTTP.
There are, however, a few measures that can greatly reduce the activity and impact of torrenting:
- Prevent access to tracker sites that distribute .torrent files
- Implement a Layer-7 firewall that can perform deep packet inspection
- Use QoS to throttle bandwidth-hogging endpoints
DNSFilter can effectively implement the first solution in this list - preventing access to sites that are known to distribute .torrent files. You can easily do this by blocking the P2P & Illegal category in your site policy. This will prevent end users from browsing these sites and initiating torrent downloads from them.
Implementing firewall rules and Quality of Service rate limits can also curb users that are engaging in torrenting activity. There are multiple security vendors which provide physical or virtual firewall appliances that can perform an application-layer inspection as well as bandwidth-limiting to applications.