From: Chad A Simmons (csimmons2@csc.com)
Date: Thu Sep 26 2002 - 09:58:22 GMT-3
Check out http://www.akonix.com/.
Regards,
Chad A. Simmons, MCSE, CCNP, CCDP, CCIE Lab Candidate
Senior Member Technical Staff
GIS - Network Engineering Services - Meriden
"Frank
Jimenez" To: "'Chuck Church'" <cchurch@MAGNACOM.com>, "'McClure, Allen'"
<franjime <Allen.McClure@Tricon-Yum.Com>, "'Carlos G Mendioroz'"
@cisco.com> <tron@huapi.ba.ar>, "'Groupstudy ccielab list'" <ccielab@groupstudy.com>
Sent by: cc:
nobody Subject: RE: dealing with fastrack (Kazaa et.al.)
09/26/02
04:15 AM
Please
respond to
"Frank
Jimenez"
IIRC, You need to use a fairly new IOS load to make that work. 12.2(8)T
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft
/122t/122t8/dtnbarad.htm
Frank Jimenez, CCIE #5738
franjime@cisco.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Chuck Church
Sent: Wednesday, September 25, 2002 5:42 PM
To: 'McClure, Allen'; 'Carlos G Mendioroz'; 'Groupstudy ccielab list'
Subject: RE: dealing with fastrack (Kazaa et.al.)
I tried to get NBAR to work against streaming radio stations using media
player. I looked at the packet headers with Sniffer, and set the DSCP
to that. But it never seemed to work correctly. If anyone got it to
work, I'd like to see how it's done.
Thanks,
Chuck Church
CCIE #8776, MCNE, MCSE
Sr. Network Engineer
Magnacom Technologies
140 N. Rt. 303
Valley Cottage, NY 10989
845-267-4000
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
McClure, Allen
Sent: Wednesday, September 25, 2002 4:56 PM
To: Carlos G Mendioroz; Groupstudy ccielab list
Subject: RE: dealing with fastrack (Kazaa et.al.)
You may wish to look into NBAR. We're thinking about using it for the
peer-to-peer junk.
Allen McClure
MCSE, CCNP, CCDP
YUM! Brands, Inc.
Sr. Network Analyst
NEW E-Mail - mailto:allen.mcclure@yum.com
972-338-7494
-----Original Message-----
From: Carlos G Mendioroz [mailto:tron@huapi.ba.ar]
Sent: Wednesday, September 25, 2002 3:32 PM
To: Groupstudy ccielab list
Subject: OT: dealing with fastrack (Kazaa et.al.)
Hi,
after a long time of chasing local servers on different ports and using
CAR to make it a pain to use those pesty peer to peer programs, I'm
trying to automatize the thing.
Basically I want to find who has fasttrack (snort or the like triggering
on port 1214 activity) and make a list, then dynamically build an ACL to
CAR all traffic from/to those stations into a small pipe. End result
would be "if you use it, your network access rate will be poor".
Question: has anybody got a way to program ACLs from a unix box (via a
script)
in a secure way ? Is there a way to use SNMP to do this ?
Advise on any solution to the fastrack net hogging problem is
appreciated.
Note: My network policy does not allow me to kill port 1214 :-(
TIA
-- Carlos G Mendioroz <tron@huapi.ba.ar> LW7 EQI ArgentinaThis communication is confidential and may be legally privileged. If you are not the intended recipient, (i) please do not read or disclose to others, (ii) please notify the sender by reply mail, and (iii) please delete this communication from your system. Failure to follow this process may be unlawful. Thank you for your cooperation.
This archive was generated by hypermail 2.1.4 : Mon Oct 07 2002 - 07:44:04 GMT-3