Put a download limit for LAN users

Hi
I have a LAN with Windows 2003 domain, using Sonicwall PRO 2040, and all the internet users are created in Sonicwall (coz there is some problem in intetgrating active directory users). There are around 75 users. We have a commercial internet connection, that means, more usage than the Cap, means more money to pay.
I want to limit the usage of internet for the user, as per user per day basis, so if he exceeds 40MB a day, for the rest of the accounts get blocked.
My Sonic does give me reports of Top Users their websites, bytes downloaded etc, but that is, after the damage is done, and then running after the users make no stronger sense.
Is there any solution, to keep them away from large downloads and viewing to huge images (like email or websites)
One last, point, my dsl router is connected to the firewall directly and from firewall to the switch, so no computer is in the middle.
Thank you.
waquarAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

waquarAuthor Commented:
sorry for being not generous about the points, as i do not have much in hand. But I sure can increase if somebody has a real workable solution
0
Keith AlabasterEnterprise ArchitectCommented:
Number of points is irrelevant as they are only for fun. Most people are on here to help rather than gain points.

You are not going to be able to do this natively - e.g. there are no in-built functions that will let you do this. the 2040 mentions bandwidth throttling but this appears to be more on the side of QoS controls rather than on a user basis. Personally we have a web server sitting in the middle with GFI Webmonitor and this allows restrictions to be put in place per user/ip address. The Ip address filter can be a little temperamental as we do not assign consistent ip addresses (DHCP) but the user filters work fine everytime.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
thejzearfossCommented:
What about figuring out what the major bandwith sites are, and blocking them, assuming they're not business related? I'm not familiar with the sonicwalls, but I would expect either that or the router to have options to block certain ports (good for blocking limewire-type programs) or websites (good for youtube-type sites).  While it may not solve the issue altogether, it would certainly cut down on the usage, not to mention, help make your staff less distracted and more productive.

jz
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

waquarAuthor Commented:
thank you Keith
your solution sound practical, but expensive, coz i have to buy the license of ISA (with i think number of users too), plus the gfi software license also to be purchased.

Yeah Jz, we already are following that, but you know the more you block the more they find new sites to entertain themselves.
plus the mail sites, like yahoo and hotmail, we want to give them these facilities, but over-use, is what we want to discourage or control.
streaming sites list, mp3 and youtube are already block and so are VoIP and telephony sites, but still not a solution.
0
Keith AlabasterEnterprise ArchitectCommented:
True - it is not cheap but it is hard to put a cost on security and control. Altermnative is to purchase the control as a service from the ISP maybe?
0
waquarAuthor Commented:
right I think I will not get any further varieties solutions of my issue.
Thank you very much Keith and Jz
0
Keith AlabasterEnterprise ArchitectCommented:
Welcome :)
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Networking

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.