{"id":9669,"date":"2022-09-09T10:53:02","date_gmt":"2022-09-09T08:53:02","guid":{"rendered":"https:\/\/knowal.sfida.me\/blocking-youtube-traffic-on-mikrotik-without-the-use-of-layer-7-protocol\/"},"modified":"2022-09-09T11:22:43","modified_gmt":"2022-09-09T09:22:43","slug":"blocking-youtube-traffic-on-mikrotik-without-the-use-of-layer-7-protocol","status":"publish","type":"post","link":"https:\/\/know.al\/en\/blocking-youtube-traffic-on-mikrotik-without-the-use-of-layer-7-protocol\/","title":{"rendered":"Blocking Youtube traffic on MikroTik without the use of Layer 7 Protocol"},"content":{"rendered":"

In this lesson, we will show how you can on MikroTik<\/strong> block YouTube<\/strong> traffic without you use Layer 7<\/strong> protocol. Why without Layer 7<\/strong> regular expression? Because Layer 7<\/strong> is to heavy on your router resources like CPU and memory as for each packet the Firewall on the router is inspecting the Layer 7<\/strong> and that’s not the best and will cause on heavy traffic usage a lot of packet drops.<\/p>\n

So what I am going to use instead is the TLS Host<\/strong>. That feature is available on MikroTik RouterOS<\/strong> since version 6.41<\/strong> so why not to profit from using it. I have made my homework and find out what is the best TLS host<\/strong> to use for YouTube<\/strong> Traffic. Other applications, for example Facebook has other TLS Host.<\/strong><\/p>\n

So let me start showing you about the configuration that you need to do on the MikroTik Router to block the YouTube Traffic.<\/h6>\n
First let’s open a YouTube video on the PC.<\/h6>\n

\"\"<\/p>\n

Now let’s start doing the work on the MikroTik Router.<\/h6>\n

\"\"<\/p>\n

So I made a filter rule on the chain Forward because the traffic is passing via the router to the internet and I have put on the Src. Address my LAN Network ID (If you have another Network ID then put yours). Then Youtube<\/strong> traffic is all based on TCP port 443 so I have put them. Then on advance you have to only write on the tls host this regular expression *youtube*. Finally, as Youtube<\/strong> has many servers so I wanted to collect all of them and put them in an address list for 30 days, and that’s what I have done on the action.<\/p>\n

Now the next stop is to apply a rule to drop everything which is in the address list.<\/h6>\n

\"\"<\/p>\n

So I have created a 2nd filter rule saying that all what I have in the Dst Address list Youtube will be dropped.<\/h6>\n

I have made already some traffic to collect the YouTube servers in the address list, and here is the result inside the address list:<\/p>\n

\"\"<\/p>\n

You can see that many YouTube servers addresses have been collected and they will stay for 30 days inside the address list. All Traffic to those YouTube servers will be dropped from my MikroTik<\/strong> Router.<\/p>\n

Let’s open a YouTube video again:<\/h6>\n

\"\"<\/p>\n

You can see that the YouTube<\/strong> page is not opening. Same if you do from the smart phone application, it will not work.<\/p>\n

Conclusion:<\/u><\/strong><\/h6>\n

Blocking YouTube on MikroTik<\/strong> can be challenge. Most of people use Layer 7<\/strong> protocol to block it but then this is too heavy on the MikroTik<\/strong> router. In this way, I have showed you using the TLS host<\/strong> how you can collect the servers of YouTube and then you apply a drop filter rule on all traffic going to those server.<\/p>\n

If you would like to learn more and certify your knowledge in MikroTik, don\u2019t hesitate to contact us and participate in our trainings. Thank you!<\/h4>\n","protected":false},"excerpt":{"rendered":"

In this lesson, we will show how you can on MikroTik block YouTube traffic without you use Layer 7 protocol. Why without Layer 7 regular expression? Because Layer 7 is to heavy on your router resources like CPU and memory as for each packet the Firewall on the router is inspecting the Layer 7 and […]<\/p>\n","protected":false},"author":1,"featured_media":9677,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","footnotes":""},"categories":[26],"tags":[],"class_list":["post-9669","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","post-wrapper","thrv_wrapper"],"_links":{"self":[{"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/posts\/9669","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/comments?post=9669"}],"version-history":[{"count":0,"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/posts\/9669\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/media\/9677"}],"wp:attachment":[{"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/media?parent=9669"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/categories?post=9669"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/know.al\/en\/wp-json\/wp\/v2\/tags?post=9669"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}