help with ADSL and traffic on it

[foulmouth]

all


i have 1 ADSL 4MBPS now this line connects the whole office +- 10 users on it at 1 given time

thing is it connects Via Hubs and Fibre convertors as each section of the building is connected to central place via fibre so only option is through fibre and convertors

is there a way or programme that i can limit bandwidth to IP address ? seems hecticly slow now days then again it could be to many people on it ? or the actual network on how i connect it ?

 

[brettwlewis]

You'll need a router between your LAN and the DSL connection to do some bandwidth throttling, usage monitoring, port blocking etc. In the past I've used a smoothie for this - google smoothwall.

 

[foulmouth]

yeah i tried smoothwall just to complicated to be honest what about Untangle ?

 

[TheGuy]

We run 60 users on a 4MB ADSL line, you just have to manage it properly.

 

[foulmouth]

We run 60 users on a 4MB ADSL line, you just have to manage it properly.

thats what i need help with

 

[Anthro]

yeah i tried smoothwall just to complicated to be honest what about Untangle ?

Or ClearOS / IPCOP ?

 

[TheGuy]

thats what i need help with

We run an ISA server with WEBSense which is very expensive but no learning curve. The Linux alternatives like Smoothwall are free but you'll have to learn it, also if something goes wrong with it and you can't fix it straight away what then?

Another option you can look at is something like a Sonicwall router. You can probably get one for around R3000 which should be easier to manage.

 

[foulmouth]

why is it im getting download speeds of 3.kb ?? you see this is what i need to check

 

[The_Unbeliever]

You can either ask the company to fork out cash for a managed firewall, such as a sonicwall or Microsoft ISA server, or you can go with Smoothwall and learn something new.

That will be the only way you'll be able to manage your line properly.

Other than that we can't do more to help you.

 

[The_Unbeliever]

why is it im getting download speeds of 3.kb ?? you see this is what i need to check

Probably somebody running torrents.

As an aside, I love Smoothwall's half-open security policy, it means that only the basic services is enabled (web, ftp, email) and others are blocked. Torrents won't work with this security policy.

 

[ponder]

As an aside, I love Smoothwall's half-open security policy, it means that only the basic services is enabled (web, ftp, email) and others are blocked. Torrents won't work with this security policy.

Ideally everything should be blocked from the word go and then you just enable what you want.

 

[RoCkFoRdGuN]

Dude im sitting with the same issues hey
Start blocking torrent sites i already blocked a few
i tried blocking the ports but not working i went to google and searched for a list of torrents

http://netforbeginners.about.com/gi...36.ip_&tt=2&bt=1&bts=1&zu=http://torrents.to/

 

[ivusi]

I'm not sure what your Cisco technical abilities you have, but I would rip out whatever ADSL router you have ( I presume this is a business) replace it with a decent Cisco router (2800/2900 series), configure NBAR and implement QoS
That's what I do and - no problems on any of my remote sites.


NBAR = Network Based Application Recognition. From Cisco site "NBAR is an intelligent classification engine in Cisco IOS Software that can recognize a wide variety of applications, including Web-based and client/server applications."

In layman’s terms, NBAR examines traffic on a designated router interface and makes note of what application the traffic is associated with. It does this by mapping traffic ports to protocols (i.e. 25/TCP is SMTP), but it also recognizes traffic with no standard port number like various P2P protocols. The primary purpose of NBAR is to recognize the traffic on an interface so that QoS policies can be applied to it. This is a big step forward compared to clunky ACLs which require exact protocol and port matching. (ref http://slaptijack.com/networking/using-cisco-nbar-to-monitor-traffic-protocols-on-your-network/)

Also check out
http://articles.techrepublic.com.com/5100-10878_11-6136216.html
http://www.cisco.com/en/US/docs/swi...e/12.1_6_ea2c/configuration/guide/swgqos.html


Cheers

 

[davemc]

/me points at the ISP's

ERM, HELLO ... Can you see that here is an addon service that people actually need?
KNOCK KNOCK .. Anybody home?

 

[foulmouth]

lol yeah Cisco way looks like the way to go

unfortunatlly my company dont wanna fork out any cash and so klippi has to make second hand fong kong plans

not cool