How to monitor a Cisco 2600 router for somebody filling up our bandwidth
Posted on 2005-04-25
ISP (Time Warner RoadRunner cable service) > ISP provided cable modem > into Cisco 2600 ethernet 0/0 > out of Cisco 2600 ethernet 0/1 > internal network.
Currently using Wisconsin Road-Runner cable modem with a 1.5 mbps connection.
Our internet connection will come to a crawl several times a day.
If I power off/on the Cisco 2600, bandwidth becomes full strength again.
It is as if, when I reboot, I am disconnecting anyone from outside the building who maybe using the bandwidth without permission, spyware, or whatever.
I am using the router to do NAT on about 20 ip addresses... ftp, web, remote ticketing system.
Alot of the IP addresses sit on 2 Windows NT 4.0 servers doing IIS (they are configured with multiple addresses) and have be swept for viruses and spyware.
I have addressed this issue with my ISP and they helped me prove it to myself that their equipment does not seem to be at fault. I have proven this by putting servers on the other side of the firewall and have not had any speed issues. The router has gotten so bad that most of the things that I want to protect have been moved to the public side.
I will clean up a config without ip addresses and post that next.
Thanks in advance