[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1125
  • Last Modified:

Cap/Split Internet Connection Bandwidth

Hello,

  We are school division who is hosting more and more of our applications from our head office.   All offsite locations (schools) are connected to the head office via an ipsec vpn.  The offsite locaitons have a internet connection of 1.5 Mb/s up and 1.5 Mb/s Down.  At times students use the labs to surf the internet which at times eats up our whole pipe which then slows down any application office staff are using.  At times the office can get slowed down to a crawl.  Is there anyway to split up the internet connection so sudents can only use 1 MB and the office is always gauranteed the .5 Mb/s so they do not experince the slowdown?

Thanks
0
2hype
Asked:
2hype
  • 3
2 Solutions
 
sysreq2000Commented:
There are a number of ways to do this but how specifically would depend on your hardware and how your network is layed out. The feature you are looking for is usually called Quality of Service or QOS
0
 
2hypeAuthor Commented:
Most of the Central Apps are web based.  Giving priority to port 80 wouldn't help.   Unless you  can QoS by more than just ports.
0
 
getzjdCommented:
Restrict total outbound HTTP access for student computer vlans at the primary gateway back in the head office.  if you only give them 384k or 512, etc then the most they could use at any given site is that much to access the outside world.  If you have 3 remotes, then they each have to fight over 512 pipe or such.  The local HTTP traffic for apps at head office would be unaffected by the qos

I am sure there is a better way to do this, but have never put much thought in to it.  I will look in to our sonicwall and see what you can do with QOS..  Speaking of which, what gateways/routers/firewalls do you have at the remote sites?
0
 
2hypeAuthor Commented:
Thanks for the response.

Each school has its own 1.5 mb internet connections.  The schools either have an astaro box or a ipcop firewall.

Only vpn traffic goes to the head office.  If its not for vpn it goes straight to the internet via the schools connection.

We have no vlans.
0
 
2hypeAuthor Commented:
I found a QoS where I could cap the download speed for diffrent protocols on our ipcop boxes.  So I am going to cap all traffic a few Mb under my limit and allow HTTPS the full pipe.  I think this should work.
0

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now