Solved

Bandwidth/Content Policies for Small Businesses using an application aware firewall

Posted on 2010-11-17
5
626 Views
Last Modified: 2013-12-06
I'm responsible for IT for a small law firm. Our Internet connectivity "experience" has been slowing down over the last two years. I'm wondering what other businesses do in terms of policies for blocking or limiting access to different web sites or limiting bandwidth for online radio stations, etc.

I'm trying to strike a balance between being able to fully use what we need for business function and still allowing employees to distract/take breaks/support their work rhythms.

Ideas, experience, articles welcome...

Thanks.
0
Comment
Question by:sweetseater
5 Comments
 
LVL 4

Accepted Solution

by:
Viebs earned 84 total points
ID: 34164778
We use the SonicWall NSA series and it works like a charm for Content Filtering by categories.  You can restrict some people and unrestrict others by users/departments.  It integrates with LDAP, Active Directory.
0
 
LVL 3

Assisted Solution

by:Nasir-Siddique
Nasir-Siddique earned 83 total points
ID: 34182096
Find the trend for Internet usage.
During the peak time dont allow every thing but official requirements.
Ease the policy and allow rest during off paek internet usage hours.

Use a policybandwidth device, if your company can afford, go for one like Packet shaper from blue coat or Web Marshall.

In addition make certain regulation imposed by office authority that certain stuff should not be used during office busy hours and internet is basically for office purpose. Propogating these regulation will make the user understand the policy imposed.

Of you have a firewall, allow only trusted ports, and block all the rest. In this way no one will be able to use bandwidth intensive P2P software.
Limit download in off office hours, from 5PM to 7AM. Some people may be downloading during office hours.
0
 
LVL 2

Assisted Solution

by:qasali
qasali earned 83 total points
ID: 34268349
being a small law firm, investing in hardware devices will not be viable and cost effective. Nor the bosses will approve. I think u should used ISA server. U can block websites, based on content filtering, bandwidth allocation based on each connection, video streaming, downloading etc.

First of all u should limit the video streaming bandwidth usage per user. E,g, if a user wants to watch a video on facebook or youtube, he/she may view it at (e.g.) 10-20 KB/s. Downloading of files should be controlled. If u r managing a domain, deny installation of downloaders like orbit iDM etc.

In short video streaming is the most important factor in speed slow down. If u control it then 70 percent of ur problems will be gone.

By the way ISA supports all these functionalities and even more. It is also easy to use as compared to squid.
0
 
LVL 69

Expert Comment

by:Qlemo
ID: 34447254
This question has been classified as abandoned and is being closed as part of the Cleanup Program.  See my comment at the end of the question for more details.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question