Can you Prioritise IP addr though cisco 2500?

[drev1l]

Dear all,

I have a user on the LAN who is a bit of a bandwidth hog. He is a manager and I can't just block his connection as he needs the bandwith sometimes.

What I would like to do is create a priority list for the IP addresses so that I can let others through according to their needs. We have a 128 isdn connection and the budget won't allow us to raise the bandwidth on the line...

Is there a method of doing this through the router or some other third-party s/w? we use a switch to keep collisions down on the network..?

Any suggestions greatly received.

 

[CCIEWANNABE]

How many users in your network and what is the OS?
What type of downloads; video, text, uploads, and downloads?
What exactly is the problem?
Can you give us a list of the symptoms?
Does it happen daily?
Does it always happen at the same time of day?
I can develop a list of actions for you!
Route once; switch many

 

[drev1l]

thanks for the reply
there are 15 users on the LAN manager 1 is using win2kPRO, others have a mix of Pro 98se ME and some win2kservers
The others are complaining that they are unable to browse the net (we do a lot of web based research) they get the page unavailable screen.
At first I thought it was the ISP as we are nearing our contract end and it seemed as if we were all getting the same problems. It seems that outside office hours when it is quite here the line speed is fine. (I suppose that this could still be related to the ISP...)
Watching the switch in the office his port is pretty much
permanantly lit up which suggests to me heavy traffic.
I guess the traffic is D/ling I found download accellerator on his machine, and video... He is pretty protective over his machine and others access to it. When I have checked it I haven't found anything obviously downloaded..

There are no problems accessing our file servers or mail servers.
As far as when it happens it fluctuates through the day, I can't see any real pattern, other than it is within working hours.
I wouls like to monitor his pc a little more closely but I didn't think sniffers worked with switches and I have to be careful how I approach this particular person. Ideally I would like to be able to reduce his impact on the network without having to "have a chat" about net usage!

thanks in advance

 

[denodave]

Is this guy playing online games? That kind of bandwidth use, coupled with an overly-protective attitude towards others acessing his machine, hints of some possible mis-conduct or inapropriate use. Then again, he could be like me and have streaming media (like radio broadcasts) playing while he works.

*What addresses does your analyzer tell you he is accessing?* Can you access (as an admin you should be able to, at least when he's gone) his browser for recent activity or monitor access through a third-party software to find out where all this activity is going/coming? Have you checked the routing logs for his station?

These are steps we took in a company that had some abusive employees. Sometimes it results, as it did in our case, in company-wide restrictions on certain types of activity (no streaming unless it was research-specific, and it had to be proved). Email me! denodave@yahoo.com
Real men pray...especially techies!

 

[CCIEWANNABE]

I SUGGEST YOU INTIATE AN ACCESS LIST POLICY.
Policy Set #101: HTTP Packets to Hosts from Web server
Policy Set #102: SMTP Packets to hosts from mail server.
Modify your policy to fit your network needs. Sounds like you can have policies for restriction of SSL, telnet, maybe some basic FTP.
Policy Set #103: deny IP any any log to create log reports.

You can also use certain third party bandwidth managers to monitor and restrict particular traffic. "Deno Dave" hit the nail.... audit the user's machine. If he is your boss it can’t get political... HA HA. Create a log, record the history; and the network activity! Present the facts upon completion of the log to the violators.

Allot of Bandwidth Management software provide differential QoS by setting priority for users and services. A user with higher priority will receive three-times the bandwidth as another user with a lower priority.
Route once; switch many