What is the technique to fully control my zte zxhn router

mossabe

Commendable
Sep 14, 2016
3
0
1,510
Preview

  • I have zte zxhn h108n router.
    The problem is i have limited usage of the internet with about 100Gb per month.
    I need to restrict all the users from downloading just downloading.
    It's ok to surf stream anything but not download, How can i achieve this?
 
Solution
Without reading the manual its hard to say if your router can do it.

I suspect it does not since you already know a very specific type of traffic you want to block. Routers that have firewall features it is that simple you just put in a rules on the firewall screen that says to block that port on udp and TCP.

Your only real option if your router does not have the feature is to buy something else. In this case you can get a number of routers that have both a firewall and dsl modem. Otherwise you are back to putting a router in front of your current router.
Even if you had a dedicated firewall/traffic monitor what you as for is tough.

In many cases you can't tell the difference between web traffic and downloading. Very technically all the pictures you see are downloaded files. Many web sites just transfer files using http. Gone are the days where file transfer used its own protocol like FTP.

Even the very advanced servers that large companies buy can do little lately. Used to be they could look into the HTTP data stream and see file downloads. Everything is now encrypted via HTTPS so the "deep packet inspection" is almost worthless feature.

What you might do is try to limit each user to a monthly cap, that way people who download stuff get cut off not affecting other users. Unfortunately this is not going to be a option for you since your router does not have that feature and since it has a DSL modem in it you can not load third party firmware.

You are going to have to put a device in front of your router to do this. You could use a linux based firewall system that has many traffic limiting/inspection options but again the encrypted data streams will limit your options. You could also buy a different router...you need to keep your DSL one for the modem part....that supports third party firmware. A third party firmware called gargoyle has the ability to setup user data caps. I have not seen that feature on the more populat dd-wrt or openwrt firmware but maybe they do have it now.

I suspect though the answer to your question really is you can't do what you want.
 
First, I'd like to thank you for your reply and for the clarification.
What if the problem that i have too many users, won't that be an obstacle?
What I'm trying to achieve is to block all the common ports that almost every user uses like Google play port that uses TCP and UDP 5228 port and workaround this problem that way.
 
Without reading the manual its hard to say if your router can do it.

I suspect it does not since you already know a very specific type of traffic you want to block. Routers that have firewall features it is that simple you just put in a rules on the firewall screen that says to block that port on udp and TCP.

Your only real option if your router does not have the feature is to buy something else. In this case you can get a number of routers that have both a firewall and dsl modem. Otherwise you are back to putting a router in front of your current router.
 
Solution