Re: [WISPA] P2P Worm Monitoring/Alerting/Control

2005-12-10 Thread John Scrivner
We were doing quite a bit with our 3640 but from my experience the box 
did not hold up well under load. Be cautious when considering doing 
traffic shaping with your 3640. Watch the memory and CPU load closely.

Scriv


John Thomas wrote:


Mark, go over to http://www.mikrotik.com/download.html#dude

See if it does some/all of what you need.
As for limiting/shaping, your 3640 may do what you need.

John



Mark Nash wrote:

I'm at the point on my network now that I really need to control 
unnecessary bandwidth usage.  The biggest problem is the p2p users 
with their excessive upload, and worms come in a close second.
 
My network is comprised of a Cisco 3640, Cisco C4840G L3 switch for 
segmenting, and Dell 3324 managed switches.  I have run ntop in the 
past but I believe it only reports interactively through the web 
interface.  I wouldn't consider myself too far off from obtaining an 
SNMP station/software like SNMPc.
 
I'm needing to implement a solution that will monitor, alert on, and 
control this type of traffic.  Either not pass it or rate-limit it.  
I'm interested in solutions that have been implemented, home-grown, 
tested, failed, etc.
 
Thanks in advance...
 
Mark Nash

Network Engineer
UnwiredOnline.Net
325 Holly Street
Junction City, OR 97448
http://www.uwol.net
541-998-
541-998-5599 fax





--
WISPA Wireless List: wireless@wispa.org

Subscribe/Unsubscribe:
http://lists.wispa.org/mailman/listinfo/wireless

Archives: http://lists.wispa.org/pipermail/wireless/


Re: [WISPA] P2P Worm Monitoring/Alerting/Control

2005-12-10 Thread A. Huppenthal
We use bandwidth shaping on *nix. works fine. currently the profile for 
one site manages 500+ IP based up and downstream.  Its one of our few 
home-brew items. Of course, its all open source, so I don't need to 
worry about support on this particular item.



John Thomas wrote:


Mark, go over to http://www.mikrotik.com/download.html#dude

See if it does some/all of what you need.
As for limiting/shaping, your 3640 may do what you need.

John



Mark Nash wrote:

I'm at the point on my network now that I really need to control 
unnecessary bandwidth usage.  The biggest problem is the p2p users 
with their excessive upload, and worms come in a close second.
 
My network is comprised of a Cisco 3640, Cisco C4840G L3 switch for 
segmenting, and Dell 3324 managed switches.  I have run ntop in the 
past but I believe it only reports interactively through the web 
interface.  I wouldn't consider myself too far off from obtaining an 
SNMP station/software like SNMPc.
 
I'm needing to implement a solution that will monitor, alert on, and 
control this type of traffic.  Either not pass it or rate-limit it.  
I'm interested in solutions that have been implemented, home-grown, 
tested, failed, etc.
 
Thanks in advance...
 
Mark Nash

Network Engineer
UnwiredOnline.Net
325 Holly Street
Junction City, OR 97448
http://www.uwol.net
541-998-
541-998-5599 fax







--
WISPA Wireless List: wireless@wispa.org

Subscribe/Unsubscribe:
http://lists.wispa.org/mailman/listinfo/wireless

Archives: http://lists.wispa.org/pipermail/wireless/


Re: [WISPA] P2P Worm Monitoring/Alerting/Control

2005-12-09 Thread Marlon K. Schafer (509) 982-2181



Like the others that have spoken up here we use 
MT. Butch does all of the work on it for us as I'm no router guy. 
Great stuff.

The only problem is that there is basically no 
factory support. And Butch has a real job too. grin

I've been sending my consulting customers to www.imagestream.com mostly. For 
about the same price that mt wants per MONTH for direct support you can get a 
full year of service. And when we buy the units from them they come with 
hardware and software support, pre programmed and with the firewalls all set up 
and ready to go. Great people, I've met a few of the guys from there 
eyeball to eyeball.

I LOVE my MT boxes and the gui is great. The 
lack of support is a deal breaker for me though. I'm stuck with them now 
but starting over I'd probably use something else.

If you have the pc's already laying around it's a 
far cheaper option though. Even after paying the devil (Butch) his due to 
make it work right. (just funnin with Butch here guys, he's THE man and 
should be charging more than he does, he's that good)

Hope that helps!

Marlon(509) 
982-2181 
Equipment sales(408) 907-6910 
(Vonage) 
Consulting services42846865 
(icq) 
And I run my own wisp!64.146.146.12 (net meeting)www.odessaoffice.com/wirelesswww.odessaoffice.com/marlon/cam



  - Original Message - 
  From: 
  Mark Nash 
  To: WISPA General List 
  Sent: Thursday, December 08, 2005 8:25 
  PM
  Subject: [WISPA] P2P  Worm 
  Monitoring/Alerting/Control
  
  I'm at the point on my network now that I really 
  need to control unnecessary bandwidth usage. The biggest problem is the 
  p2p users with their excessive upload, and worms come in a close 
  second.
  
  My network is comprised of a Cisco 3640, Cisco 
  C4840G L3 switch for segmenting, and Dell 3324 managed switches. I have 
  run ntop in the past but I believe it only reports interactively through the 
  web interface. I wouldn't consider myself too far off from obtaining an 
  SNMP station/software like SNMPc.
  
  
  I'm needing to implement a solution that will 
  monitor, alert on, and control this type of traffic. Either not pass it 
  or rate-limit it. I'm interested in solutions that have been 
  implemented, home-grown, tested, failed, etc.
  
  Thanks in advance...
  Mark NashNetwork 
  EngineerUnwiredOnline.Net325 Holly StreetJunction City, OR 
  97448http://www.uwol.net541-998-541-998-5599 
  fax
  
  

  -- WISPA Wireless List: 
  wireless@wispa.orgSubscribe/Unsubscribe:http://lists.wispa.org/mailman/listinfo/wirelessArchives: 
  http://lists.wispa.org/pipermail/wireless/
-- 
WISPA Wireless List: wireless@wispa.org

Subscribe/Unsubscribe:
http://lists.wispa.org/mailman/listinfo/wireless

Archives: http://lists.wispa.org/pipermail/wireless/


Re: [WISPA] P2P Worm Monitoring/Alerting/Control

2005-12-09 Thread Tom Andrews
I can't say enough about the guys at Imagestream. I'm a proud customer, host 
their servers and have put my business in their hands on more times than I 
have things to count them on. I've never had an issue they did not stop all 
other work to figure out and get tweaked. We have just installed on of their 
Rebel Routers in a shack at the base of the tower which feeds them their 
internet. Scott, Josh and Eric are working on doing some hard core QOS to 
run across my PTP link and having the added ability to do the QOS and P2P 
tweaking before the packets hit the PTP link has resulted in much better 
performance. Just the P2P work they have done has saved me a lot of problems 
and bandwidth. To say the staff are friends is an understatement. Having 
them on my wireless is also a big benefit to other WISP's as they have felt 
the pain first hand of many of the problems we all encounter from time to 
time a tower down due to massive ice loading, twice I've lost the AP on 
that tower to storm damage and the last issue was my PTP link going dead. 
Not only do I trust them but I rely on them and they have not failed me in 
any way over the last 5 years.


Tom Andrews
Stuart Pierce fan club member

- Original Message - 
From: Marlon K. Schafer (509) 982-2181 [EMAIL PROTECTED]

To: WISPA General List wireless@wispa.org
Sent: Friday, December 09, 2005 10:30
Subject: Re: [WISPA] P2P  Worm Monitoring/Alerting/Control


Like the others that have spoken up here we use MT.  Butch does all of the 
work on it for us as I'm no router guy.  Great stuff.


The only problem is that there is basically no factory support.  And Butch 
has a real job too.  grin


I've been sending my consulting customers to www.imagestream.com mostly. 
For about the same price that mt wants per MONTH for direct support you can 
get a full year of service.  And when we buy the units from them they come 
with hardware and software support, pre programmed and with the firewalls 
all set up and ready to go.  Great people, I've met a few of the guys from 
there eyeball to eyeball.


I LOVE my MT boxes and the gui is great.  The lack of support is a deal 
breaker for me though.  I'm stuck with them now but starting over I'd 
probably use something else.


If you have the pc's already laying around it's a far cheaper option though. 
Even after paying the devil (Butch) his due to make it work right.  (just 
funnin with Butch here guys, he's THE man and should be charging more than 
he does, he's that good)


Hope that helps!

Marlon
(509) 982-2181   Equipment sales
(408) 907-6910 (Vonage)Consulting services
42846865 (icq)And I run my own wisp!
64.146.146.12 (net meeting)
www.odessaoffice.com/wireless
www.odessaoffice.com/marlon/cam



 - Original Message - 
 From: Mark Nash

 To: WISPA General List
 Sent: Thursday, December 08, 2005 8:25 PM
 Subject: [WISPA] P2P  Worm Monitoring/Alerting/Control


 I'm at the point on my network now that I really need to control 
unnecessary bandwidth usage.  The biggest problem is the p2p users with 
their excessive upload, and worms come in a close second.


 My network is comprised of a Cisco 3640, Cisco C4840G L3 switch for 
segmenting, and Dell 3324 managed switches.  I have run ntop in the past but 
I believe it only reports interactively through the web interface.  I 
wouldn't consider myself too far off from obtaining an SNMP station/software 
like SNMPc.


 I'm needing to implement a solution that will monitor, alert on, and 
control this type of traffic.  Either not pass it or rate-limit it.  I'm 
interested in solutions that have been implemented, home-grown, tested, 
failed, etc.


 Thanks in advance...

 Mark Nash
 Network Engineer
 UnwiredOnline.Net
 325 Holly Street
 Junction City, OR 97448
 http://www.uwol.net
 541-998-
 541-998-5599 fax


--


 -- 
 WISPA Wireless List: wireless@wispa.org


 Subscribe/Unsubscribe:
 http://lists.wispa.org/mailman/listinfo/wireless

 Archives: http://lists.wispa.org/pipermail/wireless/







--
WISPA Wireless List: wireless@wispa.org

Subscribe/Unsubscribe:
http://lists.wispa.org/mailman/listinfo/wireless

Archives: http://lists.wispa.org/pipermail/wireless/




--
WISPA Wireless List: wireless@wispa.org

Subscribe/Unsubscribe:
http://lists.wispa.org/mailman/listinfo/wireless

Archives: http://lists.wispa.org/pipermail/wireless/


Re: [WISPA] P2P Worm Monitoring/Alerting/Control

2005-12-09 Thread Butch Evans

On Fri, 9 Dec 2005, Tom Andrews wrote:

I can't say enough about the guys at Imagestream. I'm a proud 
customer, host their servers and have put my business in their 
hands on more times than I have things to count them on. I've never


I like the Imagestream product as well.  It is a really top-notch 
solution for what was originally requested.  I would (like you) have 
no trouble recommending this product.  (I still would say for this 
application, MT would probably work as well for just a little less 
money.)


--
Butch Evans
BPS Networks  http://www.bpsnetworks.com/
Bernie, MO
Mikrotik Certified Consultant
(http://www.mikrotik.com/consultants.html)
--
WISPA Wireless List: wireless@wispa.org

Subscribe/Unsubscribe:
http://lists.wispa.org/mailman/listinfo/wireless

Archives: http://lists.wispa.org/pipermail/wireless/


Re: [WISPA] P2P Worm Monitoring/Alerting/Control

2005-12-08 Thread Blair Davis
Must agree with Butch.  MikroTik works well and scales well.  It is all 
we use for P2P, firewalling, NAT, rate limiting and logging.


Blair Davis
West Michigan Wireless ISP
269-686-8648

Butch Evans wrote:


On Thu, 8 Dec 2005, Mark Nash wrote:

I'm needing to implement a solution that will monitor, alert on, and 
control this type of traffic.  Either not pass it or rate-limit it.  
I'm interested in solutions that have been implemented, home-grown, 
tested, failed, etc.



While there are LOTS of solutions out there (including the 
home-grown), Mikrotik is probably easiest, and will do precisely 
what you are asking for.  http://www.mikrotik.com/



--
WISPA Wireless List: wireless@wispa.org

Subscribe/Unsubscribe:
http://lists.wispa.org/mailman/listinfo/wireless

Archives: http://lists.wispa.org/pipermail/wireless/