Solved

Block Streaming Radio/Video Access on network

Posted on 2013-06-10
4
1,730 Views
Last Modified: 2013-08-05
I am switching my network from various carriers all to a Windstream MPLS network for all of my locations across the country. That being said, I will have the internet funneling through one main location so I can have one firewall in place to manage internet traffic from all locations, etc. I can setup Group Policies or adjust this hardware firewall that will be in place. The firewall model I will have will be a SonicWall NSA 3500. Since all traffic including VOIP will be going through this MPLS network, I want to start limiting personal activity a little more on the network. I know I can block sites like pandora.com, etc. individually, but is there a way that I can block all streaming radio stations for people that like to listen to local radio stations that stream? What about blocking video streaming such as youtube videos, etc.? What about if they are embedded videos in other websites? Basically, I need to limit non work related internet activity - No more facebook, pandora/streaming radio, etc. My network is made up of all Windows 7 client machines and a mix of Server 2003 and Server 2008 servers. I have more than enough bandwidth for normal business activity and probably for the streaming too but I want to make sure things don't get bogged down in any way.

Thanks
0
Comment
Question by:SE-Pneumatic
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 2

Expert Comment

by:babuse
ID: 39235733
I work for districts with several thousand users, and we use Lightspeed for our content filtering.

It is a great package that allows us the ability to limit by classification or by site.
We can also reduce that limitation based on user/ou/group/etc...

Also another great package that we have used is Barracuda Web Filtering.

Some in our organization like one, and some like the other.

Both are great packages that would definitely support this need.

Lightspeed, however, has better customer service and willing to assist on the install and getting setup.
0
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 39243360
If you use a proxy you can. Force the users through the proxy using WCCP and block outgoing destination ports (as many as you can) so they have to use the proxy.Sophos has a good solution we like, and BlueCoat does too, it just cost more than we wanted. Video streaming and audio streaming are tunneled inside of HTTP for the most part, so it's impossible to do at the firewall level unless you have very advanced and expensive firewalls. How do you get a firewall to block SWF? You don't, you'd need a proxy or some other http inspecting device, on top of that you need something that can resolve and classify URL's and domain names, and that's where the proxies are best.
In addition and in fact BEFORE doing any of this you need polices that state the expected behavior (acceptable use) of the employee's are. Have your HR and or Legal team(s) approve them, discuss with other management about the changes or the more thorough enforcement of these rules/policies.
http://www.sans.org/security-resources/policies/
-rich
0
 
LVL 2

Accepted Solution

by:
SE-Pneumatic earned 0 total points
ID: 39371485
I am going to use the SonicWall that I have in place for content filtering and firewall use. All internet will come through my MPLS and out one single connection for all locations. Thanks anyway guys.
0
 
LVL 2

Author Closing Comment

by:SE-Pneumatic
ID: 39382127
None of the other options fit for me.
0

Featured Post

Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Window update errors on VMs 9 49
Price for Fiber 13 69
SSL-VPN 1 54
Check Spoof email 6 39
The next five years are sure to bring developments that are just astonishing, and we will continue to try to find the balance between connectivity and security. Here are five major technological developments from the last five years and some predict…
Most MSPs worth their salt are already offering cybersecurity to their customers. But cybersecurity as a service is wide encompassing and can mean many things.  So where are MSPs falling in this spectrum?
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question