Solved

Bandwidth/Content Policies for Small Businesses using an application aware firewall

Posted on 2010-11-17
5
621 Views
Last Modified: 2013-12-06
I'm responsible for IT for a small law firm. Our Internet connectivity "experience" has been slowing down over the last two years. I'm wondering what other businesses do in terms of policies for blocking or limiting access to different web sites or limiting bandwidth for online radio stations, etc.

I'm trying to strike a balance between being able to fully use what we need for business function and still allowing employees to distract/take breaks/support their work rhythms.

Ideas, experience, articles welcome...

Thanks.
0
Comment
Question by:sweetseater
5 Comments
 
LVL 4

Accepted Solution

by:
Viebs earned 84 total points
ID: 34164778
We use the SonicWall NSA series and it works like a charm for Content Filtering by categories.  You can restrict some people and unrestrict others by users/departments.  It integrates with LDAP, Active Directory.
0
 
LVL 3

Assisted Solution

by:Nasir-Siddique
Nasir-Siddique earned 83 total points
ID: 34182096
Find the trend for Internet usage.
During the peak time dont allow every thing but official requirements.
Ease the policy and allow rest during off paek internet usage hours.

Use a policybandwidth device, if your company can afford, go for one like Packet shaper from blue coat or Web Marshall.

In addition make certain regulation imposed by office authority that certain stuff should not be used during office busy hours and internet is basically for office purpose. Propogating these regulation will make the user understand the policy imposed.

Of you have a firewall, allow only trusted ports, and block all the rest. In this way no one will be able to use bandwidth intensive P2P software.
Limit download in off office hours, from 5PM to 7AM. Some people may be downloading during office hours.
0
 
LVL 2

Assisted Solution

by:qasali
qasali earned 83 total points
ID: 34268349
being a small law firm, investing in hardware devices will not be viable and cost effective. Nor the bosses will approve. I think u should used ISA server. U can block websites, based on content filtering, bandwidth allocation based on each connection, video streaming, downloading etc.

First of all u should limit the video streaming bandwidth usage per user. E,g, if a user wants to watch a video on facebook or youtube, he/she may view it at (e.g.) 10-20 KB/s. Downloading of files should be controlled. If u r managing a domain, deny installation of downloaders like orbit iDM etc.

In short video streaming is the most important factor in speed slow down. If u control it then 70 percent of ur problems will be gone.

By the way ISA supports all these functionalities and even more. It is also easy to use as compared to squid.
0
 
LVL 68

Expert Comment

by:Qlemo
ID: 34447254
This question has been classified as abandoned and is being closed as part of the Cleanup Program.  See my comment at the end of the question for more details.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now