[59851] in North American Network Operators' Group
Re: The status of consumer rate limiting?
daemon@ATHENA.MIT.EDU (Petri Helenius)
Wed Jul 23 02:18:59 2003
From: "Petri Helenius" <pete@he.iki.fi>
To: "Stephen J. Wilcox" <steve@telecomplete.co.uk>,
"Fletcher E Kittredge" <fkittred@gwi.net>
Cc: "Owings, Curtis L [GMG]" <curtis.l.owings@mail.sprint.com>,
<nanog@merit.edu>
Date: Wed, 23 Jul 2003 09:18:16 +0300
Errors-To: owner-nanog-outgoing@merit.edu
>
> Since some p2p programs now use well known port numbers allocated to other
> things eg port 80, is it even possible to block/rate limit them? And have folks
> attempts at blocking caused this move to use such port numbers which imho is not
> a good thing..
>
As long as there are some bits in the stream that give away the ultimate application
of that stream itīs possible. Using SSL / IPSEC / some proprietary protocol will
degrade the detection to look for "elephant flows" but still allows for some bandwidth
regulation when neccessary.
To look beyond the packet you either need more sophisticated hardware or reasonable
speeds, like in the gigabit range, not 10G/40G.
Pete
