How WFilter works to block p2p traffic?

General discussion about WFilter ICF features, problems, configuration issues etc.

Moderators: imfirewall, gengw2000

Mick
Posts: 4
Joined: Tue Jan 26, 2010 11:18 pm

How WFilter works to block p2p traffic?

Postby Mick » Tue Jan 26, 2010 11:24 pm

I am interesting in your software named “wfilter”.



Could you please provide me within following information?



1. Could you please describe to me how wfilter works to block p2p traffic in briefly? Such as the concept of process.

2. I know some P2P traffic block software are working based on the ARP cheating, but it will not work if client is using Anti-arp. Does wfliter work at the same way? What will happen if user install Anti-ARP in client machine?Will Wfliter still work normally?



This is my network topology:

1x ADSL2 modem including Router, firewall and 4 port switching and wireless access point (all in one device). There are totally 2 clients connecting network via cable and 8 users are connecting to network via wireless. Could you please tell me how can I install the wfilter in my network? As I saw your sample, the wfilter should be installed one computer which is connected to port mirrored switch.



Thanks for your information. I am currently looking for a solution for blocking p2p traffic in my network. I hope your software can meet my requirements.



admin
Site Admin
Posts: 137
Joined: Wed Nov 23, 2016 12:08 pm

How WFilter works to block p2p traffic?

Postby admin » Tue Jan 26, 2010 11:31 pm

WFilter blocks certain connections by sending RST packets to the target computer. Not by ARP spoofing. It is called "passby filtering".

"Passby filtering" is a mature technology used by a lot products like websense, surfcontrol... It will not be blocked by Anti-ARP or other firewall programs. More technical details of WFilter can be found at:

http://www.imfirewall.us/WFilter_Technologies_and_Security_Introduction.htm



Actually, we recommend you not to use "ARP spoofing", becaust it will make your network unstable, also it will be blocked by some firewall programs.



For your network topology, it will be simple if your wireless router can support "port mirroring".

If not, you have two solutions:

1. Add a port mirroring switch. Please check this guide: http://www.imfirewall.us/help/doc/deploy_wireless.htm

2. Setup a proxy server. This guide will be helpful: http://www.imfirewall.us/help/doc/deploy_proxy.htm



You also can find more documents in "Help" of WFilter.



Mick
Posts: 4
Joined: Tue Jan 26, 2010 11:18 pm

How WFilter works to block p2p traffic?

Postby Mick » Wed Jan 27, 2010 7:36 pm

I also have the following few questions:

** if I add a port mirrored switch in my network, how can I manage Wireless clients?

** Do I need to install software into all clients? Actually I don’t want my clients to be aware of being monitored and controlled.

** is it possible any software / application that can block WFilter?

** how's support service if I purchase your product?

admin
Site Admin
Posts: 137
Joined: Wed Nov 23, 2016 12:08 pm

How WFilter works to block p2p traffic?

Postby admin » Wed Jan 27, 2010 7:59 pm

1. Actually, as you can see in the http://www.imfirewall.us/help/doc/deploy_wireless.htm. Since the wireless AP connects to internet through the port mirroring switch, so all internet activities from the wireless AP can be monitored.



2. No client agent is required. You only need to install WFilter in one computer to monitor all computers. The clients will not be aware of the monitoring or blocking unless you want them to know.



3. By far, no software can block WFilter, since WFilter is connected to the mirroring port which is something like an administrator port of your switch.



4. The support includes: 1). free update, 2). free "online/email/telephone/IM" support.

Mick
Posts: 4
Joined: Tue Jan 26, 2010 11:18 pm

How WFilter works to block p2p traffic?

Postby Mick » Wed Jan 27, 2010 8:14 pm



Thanks for your detailed information.



As I mentioned, My wireless AP is the included in my ADSL2+ Modem device, Does it mean I have to purchase Wireles AP device as well?



admin
Site Admin
Posts: 137
Joined: Wed Nov 23, 2016 12:08 pm

How WFilter works to block p2p traffic?

Postby admin » Wed Jan 27, 2010 8:20 pm

Yes. Actually, you have two choices:



1. Add a normal router for ADSL access, and a port mirroring switch. The topology will be something like: ADSL<-->New router<-->port mirroring switch<-->wireless AP.



2. Add a router with port mirroring support. In this case, you don't need a port mirroring switch, since the mirroring can be done directly on the router. The topology: ADSL<-->New router with port mirroring<-->wireless AP.






Return to “WFilter ICF”

Who is online

Users browsing this forum: No registered users and 44 guests