06-16-2006 07:51 PM
Howdy all, we have an intresting situation over here. Many groups of soldiers come together to buy satalite dishes from Bently walker so they can web cam with loved ones back home in the US. Problem is some users seem to think that we have broadband and try to use lime wire and Imesh P2P software. This tends to severly interfere with our conectivity because of the latency issues associated with satalite communications. I attempted to set my problem users to 10baseT and half duplex to slow them down. That resulted in constant crashing of the switch. I fixed the it by putting everyone back to auto using CNA V4.0. I realy would appreciate any assistance finding a way to restrict/control/setting the speed at the switch port. This would allow my users to all have a fair opportunity to stay in touch with loved ones back home.
Next week I may be adding an aditional 6 users through another switch using Dynamic IP addresses. Any one interested in lending an old soldier a hand here? Thanks big time.
My email: michael.zuilkowski@us.army.mil
06-18-2006 04:15 PM
You might want to try posting to the LAN, Switching and Routing forum. You may get some good responses there
06-18-2006 10:49 PM
Hi Michael
Catalyst 2950 series switches that run the enhanced image (EI) support ingress policing on physical interfaces only. Policers do not have support on VLAN interfaces
fore more info on the same do refer this link..
regds
06-18-2006 11:08 PM
Hi
with some sniffer software find out which port is being used for that application and try putting a access control list on the switch to block that port .
rgds
06-19-2006 01:06 PM
If you could hands on a pix, that would solve all your problems. If not, the access-list is probably the best way to go. Write it to only allow http, https, and whatever ports the web cam and associated software is using to stream the video.
Also, you could setup a proxy server and force everyone to use the proxy in order to gain internet access. This would simplify your access list by allowing the proxy outbound and nothing else.
Limewire is just horrible. I have spent hours fixing machines infected by something they downloaded from Limewire. Also, isn't illegal, something about the UCMJ. (Former Marine)
The site below has a list of ports.
http://www.chebucto.ns.ca/~rakerman/port-table.html
Good luck and Semper Fi
06-19-2006 01:09 PM
Just thought of something, do you have access to the router, you could use some policy based routing to slow those users down.
06-20-2006 11:36 PM
I control all the hard ware. This is a private net work so I don't really care what thier activity is Just how much band width they are using. I use solarwinds to onitor usage. It allows me to shut down thier port if they get greety. But they seem to have fugured out that I need to sleep and thats when they throttle the system and get me penalized.
So I'm trying to find the easyiest way to limit them at the port to say 65 Kilobytes a piece.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide