On 10/13/2011 6:35 AM, Jeremy Charles wrote: > > I've been directed to figure out how to decrease the amount of > Internet capacity that is being used by employees to do things that > are not work-related. The examples I've been given are Netflix and > other streaming media. >
Well there's the enterprise way, the ghettohacker way, and the HR-fires-you way. First option: content filtering appliances for whatever bandwidth capacities you need. This will be expensive. You will have to pay. People generally go with whatever existing vendor cuts them the best deal and they're all about the same. Second option: do selective blacklisting of sites using conventional cheap proxy tech. Block outbound internet traffic except from privileged VLANS/subnets and make your users proxy/socks out. You won't be able to block protocols super well, but if you add in something like packetfence with snort into your proxy deployment, you can likely cover all your bases for cheap and have reporting for possible third option. http://www.packetfence.org/about/overview.html Third option: threaten horrible consequences. Get HR involved (as they like to get reports from option #1 anyway, they'll be involved eventually), update your acceptable use policies, and get rid of people who can't follow it. -- Ian Gorrie <i...@gorrie.org> Technology Advisor CISSP-ISSAP CISA CISM CEH http://gorrie.org PGP Key: 0x88C367CD http://www.linkedin.com/in/gorrie
_______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
