Dear all Pros,

We are using Linode's VPS as VPN/PPTP server for our clients to access Goolge Apps, Dropbox, etc. services in China. It is running ok but we got big problems these days: someone using it to bittorrant moive/games that violate IP law.

And we are unable to track them cause our knowledge of linux/vpn is very limited. one client/one company shares the same user/password of vpn access.

Do you have have any experience to handle it? what we need is:
1) If it is possible, authorize Linode team to terminate the p2p connections asap while keep our server/service running. Thus safes all the trouble related.

2) tracking key word that Linode's find out, and terminate the p2p connection by ourself. Are there any opensource program do the job? We can not afford too much.

3) anything maybe helpful?

Thanks for all your support.

Linode can't police your server for you, and if it generates too many copyright complaints, they'll have to permanently terminate your linode.

It's very difficult to completely block P2P, but you can take a stab at it with L7-filter and IPP2P/OpenDPI. Encrypted connections will probably still get through. The only real way to block BitTorrent and the like is to cut off all access except through a transparent HTTP proxy, but that probably won't work with Dropbox and other non-web services.

Dropbox uses HTTP over the WAN, so it should be OK. (I've had to filter it out of quite a few pcaps over the years...) I'd second the (transparent or otherwise) HTTP proxy recommendation. That should log enough information to terminate abusers, as well.

_________________

/* TODO: need to add signature to posts */

Guspaz, will stduy L7-filter and IPP2P/OpenDPI, though I am not sure if we can make it works.

And for Http proxy, is it possible to make it encrypted from client side to proxy server side?

If it's going through an encrypted VPN, why would you need to encrypt the proxy on top of that?