Solved

Bandwidth/Content Policies for Small Businesses using an application aware firewall

Posted on 2010-11-17
5
636 Views
Last Modified: 2013-12-06
I'm responsible for IT for a small law firm. Our Internet connectivity "experience" has been slowing down over the last two years. I'm wondering what other businesses do in terms of policies for blocking or limiting access to different web sites or limiting bandwidth for online radio stations, etc.

I'm trying to strike a balance between being able to fully use what we need for business function and still allowing employees to distract/take breaks/support their work rhythms.

Ideas, experience, articles welcome...

Thanks.
0
Comment
Question by:sweetseater
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 4

Accepted Solution

by:
Viebs earned 84 total points
ID: 34164778
We use the SonicWall NSA series and it works like a charm for Content Filtering by categories.  You can restrict some people and unrestrict others by users/departments.  It integrates with LDAP, Active Directory.
0
 
LVL 3

Assisted Solution

by:Nasir-Siddique
Nasir-Siddique earned 83 total points
ID: 34182096
Find the trend for Internet usage.
During the peak time dont allow every thing but official requirements.
Ease the policy and allow rest during off paek internet usage hours.

Use a policybandwidth device, if your company can afford, go for one like Packet shaper from blue coat or Web Marshall.

In addition make certain regulation imposed by office authority that certain stuff should not be used during office busy hours and internet is basically for office purpose. Propogating these regulation will make the user understand the policy imposed.

Of you have a firewall, allow only trusted ports, and block all the rest. In this way no one will be able to use bandwidth intensive P2P software.
Limit download in off office hours, from 5PM to 7AM. Some people may be downloading during office hours.
0
 
LVL 2

Assisted Solution

by:qasali
qasali earned 83 total points
ID: 34268349
being a small law firm, investing in hardware devices will not be viable and cost effective. Nor the bosses will approve. I think u should used ISA server. U can block websites, based on content filtering, bandwidth allocation based on each connection, video streaming, downloading etc.

First of all u should limit the video streaming bandwidth usage per user. E,g, if a user wants to watch a video on facebook or youtube, he/she may view it at (e.g.) 10-20 KB/s. Downloading of files should be controlled. If u r managing a domain, deny installation of downloaders like orbit iDM etc.

In short video streaming is the most important factor in speed slow down. If u control it then 70 percent of ur problems will be gone.

By the way ISA supports all these functionalities and even more. It is also easy to use as compared to squid.
0
 
LVL 70

Expert Comment

by:Qlemo
ID: 34447254
This question has been classified as abandoned and is being closed as part of the Cleanup Program.  See my comment at the end of the question for more details.
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As dyndns has reduced the capabilities of the free service, I looked around for other free providers of Dynamic DNS service. After testing several I decided to move my DNS hosting to Hurricane Electric as then domains that require dynamic hostnam…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question