Control VPN User on the total download

Posted on 2005-04-26
Last Modified: 2013-11-16

We are in process of purchasing new hardware for VPN.  We have few requirements that we would like to implement.

1.  Give access to user to shared folders though control them on how much they can download or upload when they are working from remote site.  User cannot copy, let say 15MB, files to desktop or from desktop to network through VPN.

2.  Have the very good security.

3.  Currenlty we have Watchgaurd SOHO, we are looking into Watchguard X700.

Please provide feedback and input on how to implement. The major thing is controlling user on how much they can copy or delete or past through VPN connection.
Question by:Ankit_J_P
    LVL 38

    Accepted Solution

    I've not seen this feature in a VPN solution yet, you can limit the bandwidth speed in most vpn's but not the total amount of up/downloads... it'd be very tough for a VPN to seperate the totals... VPN's use keep-alives and they add to the BW, and if your users are checking mail etc... that'd be tough for the client or the vpn concentrator to differntiate.
    And looking over the specs and whitepapers this is also the case with the Watchguard equipment, and it's the same for cisco, you can limit BW (up or down) but you cannot limit a protocol's BW, such as ftp or smb.

    An added benefit of most VPN's is the "Split-Tunneling" feature, where traffic that can be routed over the internet is routed over the internet, and traffic destined for the LAN is sent via the VPN. So if split-tunneling was enabled, if a user went to that traffic would go out thier cable modem or dsl line, and if they accessed the company Intranet that would go over the vpn.

    You can monitor useage, and be alerted when a certai threshold has been reached... but I know of no way to limit a protocol's BW totals...
    You can set quota's on M$ file-systems or folders... but they don't allow you to increment them automatically, they just let you set a "hard" limit, like 15meg's for the desktop folder...

    I hope another expert will have something more to offer...

    Author Comment

    Thanks Rich.

    How about in AD for specific user.  Can we limit on the server side that how much a user can download or upload?

    LVL 38

    Expert Comment

    by:Rich Rumble
    Here is a product that may do what your asking...

    Product                                                         Single user(One computer)       Small business(Up to 10 computers)       Unlimited(Site)
    SoftPerfect Bandwidth Manager                               $99.00 US                                   $250.00 US                                          $800.00 US

    Everything else I've found only does traffic shaping, which is rate BW limiting... i'll keep looking

    Featured Post

    Better Security Awareness With Threat Intelligence

    See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

    Join & Write a Comment

    Suggested Solutions

    Title # Comments Views Activity
    Cloud Infrastructure Security 3 51
    PCI DSS 2 39
    We got ransomware on the server fileserver 2012 17 104
    Monitoring software... 2 30
    Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
    If you get continual lockouts after changing your Active Directory password, there are several possible reasons.  Two of the most common are using other devices to access your email and stored passwords in the credential manager of windows.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

    754 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now