Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

squid+p2p+download limit

hi Expertise,

m using squid proxy server,but users by- pass my proxy server through HTTP tunnel or any other by-pass proxy softwre. Is there any way to prevent this thing???

My second problem is can we block p2p software at cisco router??

My third problem.. can we restrict bandwidth on protocol basis or can we limit downloading at cisco router??

if u hve any suggetion regarding these 3 problem plz help me out

thanks

Ashish Singh

2 REPLIES

Re: squid+p2p+download limit

Hi Ashish

AFAIK you can block P2P using CBAC (IOS Firewall Feature).

do refer this link for more info..

http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_white_paper0900aecd802efa46.shtml

regds

Re: squid+p2p+download limit

Hi there,

Depending on the type of router that you've got then you can build class maps and policy maps using nbar. Nbar will recognise p2p software, such as kazaa, etc.

Have a read here for all the info you'll need:-

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos_c/index.htm

For your squid problem, you can stop http tunnels, but I'm afraid you can only be reactive rather than proactive. You have to blacklist the gateway addresses for the tunnels. Have a read of this link for some more info:-

http://www.squid-cache.org/mail-archive/squid-users/200206/0866.html

Hope that helps,

LH

Please rate all posts

422
Views
5
Helpful
2
Replies
CreatePlease to create content