Since ipp2p hasn't been updated in 6 years and OpenDPI is no longer freely available (except within paid software from ipoque.com), it seems that nDPI from ntop is the only current DPI library available.
I need to block p2p and in the past was able to compile ipp2p into a kernal module and implement it using iptables. Does anyone know if its possible to use nDPI to filter p2p using iptables and if so, how can this be achieved?
Best Answer
You can grab OpenDPI and opendpi-netfilter. It works on Debian 6 out of the box without a recompile. I'm looking to update netfilter to work with nDPI but will take some time.
Also here's a gist I found for QoS using OpenDPI and netfilter wrapper https:// gist.github.com/3161018.