While looking at my wireshark data, I noticed a protocol column called BitTorrent that handles handshaking and continuation data. I know that Torrents are difficult to filter, because they can potentially use any port, so would it be possible for me to block this continuation data somehow?
I realize this isn’t strictly a wireshark issue, but I’m wondering how does wireshark know that data is related to torrents, and couldn’t I somehow harness that same information to inhibit p2p traffic on my network?