Wireshark is an excellent network sniffer and protocol analyzer that is free. Easy to install, Wireshark is a must have on networks.
You can use Wireshark to capture torrent traffic (basic method) by Clicking on Capture, Interfaces, select the options button next to the active adapter. Now create your filter.
Now create a filter using ports 6881-6889 and name the filter torrent. While many torrents are setup on different or randomized ports, you can search a capture and look for P2P software.
After naming the filter, click OK and then Start.
So what about encryption? Look at the amount of traffic from a computer on your network.
Scheduled Post (14:22 7/3/2010)
Pingback: Detect Torrents On Your Network « TTC Shelbyville – Technical Blog
Reblogged this on TTC Shelbyville – Technical Blog.