Posted: 12/23/2008 6:09:20 PM EDT
| Anyone who might have a answer? I have a lab set up at my house consisting of a ccr cluster for exchange 2007 with servers for all of the roles minus the unified messaging. i have a cisco pix 501 as the firewall and another server in the DMZ to route traffic via RAS. I have added a sling box on my network so i can watch tv on the road and at the office, but when i run it it literaly kills my upstream to the point that all other services ie. imap, pop, rpc, ftp and so on get knocked out until i turn off the slingbox stream. I was wondering if anyone knew of a way to throtle bandwidth based on ports in 2003 server. I have looked in to having my pix do it but anything under pix ios 7.0 for the new asa's do not do QOS. Any ideas? |
| I think this is what you need: http://technet.microsoft.com/en-us/magazine/2007.02.cableguy.aspx |
| my set up is that my pix is the front end to my network that forwards ports back to a server that is my dmz. the reason i set it up this instead of using the pix as the router + firewall is that the 501 is a ten lic version. so i can only have 10 concurrent connections outbound. this casues issues since i have more than 10 machines that need outbound connections at any given time. my server then connects to a 24 port dumb layer 2 switch. Is there a thid party solution that i can install on the server that will throttle a certain port to say 512k 0r 768k for outbound bandwidth? |
|
Quoted:
my set up is that my pix is the front end to my network that forwards ports back to a server that is my dmz. the reason i set it up this instead of using the pix as the router + firewall is that the 501 is a ten lic version. so i can only have 10 concurrent connections outbound. this casues issues since i have more than 10 machines that need outbound connections at any given time. my server then connects to a 24 port dumb layer 2 switch. Is there a thid party solution that i can install on the server that will throttle a certain port to say 512k 0r 768k for outbound bandwidth? If you're forwarding ports with that pix on the edge of the network, it's acting as your router, even if you're hiding machines behind it with nat or whatever. After doing some digging, it looks like IOS 7 supports QOS and queuing. You can use that pix to shape your traffic: http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5708/ps5709/ps2030/product_data_sheet0900aecd80225ae1.html I'd spit out a config for you but my router-fu is weak. Some googling should give you some configs you can hack on and get it to work. If you're not natting behind that pix (which is going to have it's own problems, namely double nat) then you could just be hitting our outbound connection limit which could be your whole problem. |
|
Aw crap, I just re-read your original post. What IOS version is on the pix? I now read that as you having something pre-7.
"sh ver" should tell you. I'm no networking guru (obviously) but this should be a lot simpler. If it were me and I just wanted it to work, I'd buy a 5505 with a 50 user license and be done with it. It'll run you about $550. You could configure it in half an hour with the gui. If you don't want to spend the money, put two nics in a junker and put linux on it, and rate limit with iptables. |