crazyfixer
asked on
How do I create SMB/FTP bandwidth caps
Hello. I have a Windows Server running File Sharing. I configured the permissions for the shares using Active Directory accounts. I'd like to configure an FTP server that uses the same ACLs as the File Server, but also prevents the user from downloading more than 2GB within 24 hours. I'd like it to kill any downloads that hit the 2GB max, and then lock the domain account for 48 hours. How can I do this? Thanks
ASKER
I know someone I used to work with did this on Solaris. (including locking domain accounts) Do you know the names of any of these ASP programs? Will they work with Server 2k3?
You can do the policies in the network equipment instead.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
That Ocean FTP server looks promising if it can use active directory for authentication.
ASKER
I've settled on trying Wing FTP but it doesn't record the statistics needed for quotas if you use an Active Directory user. Do you know how to fix that?
looks to me like you have to setup wing to use active directory and then map ad users to local users.
you can then define the local users with the quotas etc that you want.
you can then define the local users with the quotas etc that you want.
ASKER
I have done that, but the only time the quota (or even logins) is calculated is when I login with the local user name, and not the AD account.
ASKER
WingFTP won't work as it can't provide user quotas for AD users. Ocean is too expensive. Is there perhaps a way to do this with IIS, or another software?
You cannot do this with IIS.
Theres another one called bulletproof ftp.
http://www.bpftpserver.com/
you can get a free trial.
Otherwise check this list.
http://en.wikipedia.org/wiki/Comparison_of_FTP_server_software
Theres another one called bulletproof ftp.
http://www.bpftpserver.com/
you can get a free trial.
Otherwise check this list.
http://en.wikipedia.org/wiki/Comparison_of_FTP_server_software
ASKER
Thanks. I already looked at BPFTP and that wiki list before coming here. WingFTP seems like the best option, but it appears broken in that sense. I'll see if I can work with the company to fix it.
ASKER
WingFTP wound up being the product I am going to work with, but it's got a glitch or something that won't work properly right now. Hopefully it will be fixed, and I can then use it
you can use third party paid for ftp programs which will allow better file size limitations and time limits etc. Some will also have access to AD ldap database so it can use your acl's.
What they can't do is lock a domain account for 48 hours. In fact I've never seen this functionality in anything other password wrong scenarios.
The only functionality you can use regarding file size is quota management but that more to do with how much can be stored per user on a share.
If i wanted something like this i would create a website using ASP and write something that showed the shares and allow users to download but also watch there downloads and block there account on the website rather than in active directory. You can google 'asp file manager' as there are lots of these types of programs already written.
Hope this helps.