eggster34
asked on
Traffic shaping on internal network for access to the internet
Hello
I have an internal network with about 100 users. They connect to a bunch of dumb switches that connect to a PIX 506E that does NAT for them, and afterwards the PIX connects to a 3mbit MLPPP line connected to a Cisco 1721 router.
I need to limit users internet access speed. i.e. 64kbits / sec. per user. I also need to be able to limit the traffic on an application / port basis when necessary. i.e. give priority to port 80 applications.
How would I do that? Would the PIX box be able to do all of these if I upgrade the OS? Or do I need a different solution?
I have an internal network with about 100 users. They connect to a bunch of dumb switches that connect to a PIX 506E that does NAT for them, and afterwards the PIX connects to a 3mbit MLPPP line connected to a Cisco 1721 router.
I need to limit users internet access speed. i.e. 64kbits / sec. per user. I also need to be able to limit the traffic on an application / port basis when necessary. i.e. give priority to port 80 applications.
How would I do that? Would the PIX box be able to do all of these if I upgrade the OS? Or do I need a different solution?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ISA and iPrism are great for the job. But if you are looking for something inexpensive, then try MonoWall. It is a linux based firewall and has traffic shaping features.
http://m0n0.ch/wall/
http://m0n0.ch/wall/
ASKER
lrmoore , are you sure this iPrism does traffic shaping as well?
Yes, it does. 100% sure based on users, IP's, subnets, etc..
Those devices can cost anywhere from 10k to 100k depending on the features.