Block BitTorrent traffic with Next Generation Firewall
- Article Number: 000010242
- Products: Next Generation Firewall (NGFW)
- Version: 6.3, 6.2, 6.1, 6.0, 5.9, 5.8, 5.7, 5.5, 5.4, 5.3, 5.10
- Last Published Date: December 06, 2017
To block BitTorrent traffic with NGFW you will need to create an access rule and enable HTTP and HTTPS inspections.
Note Forcepoint recommends you use the latest version of NGFW and apply the latest update package for best results.
Create an access rule to block the BitTorrent application on all ports:
Important Update package 1017 modified the BitTorrent application element so that it inspects all ports by default. If you have update package 1017 or higher activated, then steps 3-6 below are not required. Instead, only the BitTorrent application element needs to be put into the Service cell.
To block .torrent file downloads over HTTPS and other BitTorrent client related HTTP traffic, you must also inspect HTTP and HTTPS connections.
The application rule alone (without HTTP/HTTPS inspection) may be enough to block all BitTorrent download and upload traffic, however for best coverage, configure NGFW to inspect the traffic.
To enable HTTP inspection:
To enable HTTPS inspection, configure TLS Client Protection: