We help IT Professionals succeed at work.

Control internet Bandwidth

zolf
zolf used Ask the Experts™
on

hello there,

i have a internet spped of 1Mbps which is used by remote users to connect via RDP to my software to do their everyday work. I have noticed that local users on my LAN around 30 clients use the internet for other purposes which consumes the bandwidth and hence reduce the bandwidth for my remote users. I want to be able to block and know which client is using what sites. how can i manage it.appreciate your help.

cheers
zolf
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
You can use a proxy to control where are surfing on internet. Squid is a free proxy that may help you. On the other hand, you can use a bandwidth controller to limit web traffic or priorize RDP traffic over web traffic.
Commented:
You can use a proxy server. Try the trial version of Wingate

http://www.wingate.com/products/wingate/index.php

Else use OpenDNS on your router and block unwanted categories like gambling, Adult sites etc.

http://www.opendns.com/

Author

Commented:

>>you can use a bandwidth controller to limit web traffic or priorize RDP traffic over web traffic.
can you suggest some

by the way i have a firewall from zentyal(i am not not expert in zentyal).but i setup it and is doing the basic stuffs for e.g. routing RDP users to my internal servers and dhcp. i am not an expert in networking and zentyal and i dont want to keep a lot of time for it as i am busy with my software development. can you please suggest something easy to manage.

Author

Commented:

some users use proxy exe files to access some sites from the company.can i also block those. i mean even if they run proxy,can i still block them

Commented:
once you have a proxy set up for users of your company, you should allow internet access only from this proxy server in the firewall. All users should put the new proxy IP in their explorer to browse internet. In this way you can restrict users directly accessing internet.

An appliance called Bluecoat Packteer can do the application based prioritization. But as your BW is only 1 mb, the proxy should do the trick.

Author

Commented:

ujitnos:

are you talking about wingate
Commented:
at its simplest, install a SMESERVER linux box (30 users can be done with a pentium 4) with two network cards thru which all internet traffic goes, it has a transparent proxy (squid) and makes nice reports of sites visited (install SARG contrib). use squidguard contrib to block lists, use shalla lists or other blocklists. this can be comfortably done in a day.

if you do not want the box act as firewall but only as proxy, you can also make the smeserver box a lan client, and force proxy settings on the local users. (firefox settings, windows internet settings) this is our setup and takes away 98% of the problems.

alternatively, you can use a sonicwall tz200 which costs a bit more but can have a backup connection on umts/hdspa

Commented:
i am taking in general when you have a proxy setup. It can be any proxy that u decide on.
Zolf: Packeteer (Bluecoat now) has one product line called packetshaper. We are using one of them and works great.

Author

Commented:

Drashiel:

is there a demo or something were i can test and how much does it cost

Author

Commented:

magwm:

i am thinking to go for sonicwall TZ210 as you mentioned,since it is easy to setup and provides loads of options.do you know how much it costs
Commented:
the licensing of packeteer is based on the bandwidth, as u have only 1 mb, its not a good idea.

Author

Commented:
thanks