How do I stop people connected to a wireless network from downloading large files?

I have set up a wireless network at my gliding club. The network is pretty simple - a Dell desktop computer using XP, and a D-Link DI-824VUP+ wireless router. Our internet connection is via a wireless broadband modem. We also have a VoIP phone connected.

We provide onsite internet access to club members as well as to visiting pilots, so we have not secured the network with WEP/WPA at this stage. The site we occupy is very remote, so we aren't concerned about "unauthorised" users - the nearest public road is a mile away. Nevertheless, we are having problems with increased usage - we are now regularly exceeding our monthly plan allowance. In rural Australia, with our appalling "broadband" services and high costs, that's breathtakingly expensive (try 15c per MB).

Is it possible to continue to provide our members and visitors with unsecured access to web weather and flight briefing services, webmail and similar resources, but to stop them from downloading large files (audio and video, for example)? I can't see how we could use the router's URL blocking/domain filtering settings - it just doesn't seem practical to try and identify and block sites, there are just too many of them. Restricting access using WPA is possible, but won't guarantee against misuse. Logging usage is also possible but difficult - as with most volunteer-run organisations, it's hard to get people to spend time analysing router logs when they could be out flying!
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

I am a fan of ClarkConnect, a multi-faceted network appliance that you can build from an older PC with 2 network cards. ClarkCOnnect is a Linux distro easily installable from the CD ISO image and the ClarkCOnnect Community edition is FREE.

With cc, you can not allow certain file types, throttle bandwidth, block users if you have to and you could even have a local web page served on it for your club.

CC has good documentation and may not do exactly of perfectly what you want but pretty close.

One NIC woould go to your wireless accesspoint or router aand the main NIC eth0, goes to your broadband/Internet router.

Worth looking at and playing with. Also a great way to learn a bit of linux.



Without some type of network appliance, you will not be able to do what you want and most of them a re pretty expensive.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
deusxmacAuthor Commented:
John, hi
Thanks for the quick response. Sounds very promising - I'll explore the links later to-day. One potential difficulty: the wireless modem we are forced to use is a USB device - it has no ethernet port. (It doesn't support networking, so I have worked around that byusing ICS and  making the Dell a server, and connecting the router directly to it). Is there a workaround for this set-up that you can suggest?


Hmmmm... So this wireless modem is connected to a PC and this PC connects to your broadband connection?

I am confused as to how this hooks up. Is you broadband Internet wireless? And you share this to other users? Or is your PC connected somehow to your broadband wireless connection?

Need a good "picture" of this. USB is a problem especially if you are using Windows ICS (Internet COnnection Sharing) or something like that.

Powerful Yet Easy-to-Use Network Monitoring

Identify excessive bandwidth utilization or unexpected application traffic with SolarWinds Bandwidth Analyzer Pack.

You should be able to setup the filters to allow access to only the sites you specify, rather than entering all the sites you DON'T want them accessing.

To hook your 3G USB device directly to a router, check out the Draytek Vigor 2910.
(or possibly in Oz).
I believe there's another new one that takes a USB adapter, but I can't remember if it's a DLink, Linksys or Netgear.

If you'd rather just try software in your current setup, there's WebScout (~$50 or NetPeeker ($25-$50, which can both limit transfer speeds (I suggest 10kb/s... fast enough for surfng and small files, but only twice as fast as dialup), unless you're using a linux box in which case there's probably some open source or liberal license freeware available.
I am interested in this Qs outcome.

Points should be split.


Forced accept.

EE Admin
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Wireless Networking

From novice to tech pro — start learning today.