Hosting Provided By

Re: large campus network ... sugestions

From: Adrian Minta <adrian.minta(at)gmail.com>
Date: Fri Dec 14 2007 - 13:40:06 EST

Tirla Adrian wrote:
> Hello,
>
> I`m currently one of the network administrators of a 3000+ students
> and i have some issues maintaining security, authentication ... and
> quality of service ...
>
>

For authentication you may use something like: http://horatio.sourceforge.net
Block outgoing connection on ports like: 25, 445, 137-139, block multicast, broadcast and bogons.
To save bandwidth use transparent proxy.
Limit each IP to a maximum bandwidth using HTB and especially limit NAT translation per IP to a reasonably small amount ( 32 should be fine if you are not allowing P2P).

-- 
Best regards,
Adrian Minta    MA3173-RIPE, MA314-ROTLD, www.minta.ro 




-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Fri Dec 14 13:42:42 2007

This message: [ Message body ]
Next message: Jonas Andradas: "Re: large campus network ... sugestions"
Previous message: Roman Medina-Heigl Hernandez: "Re: large campus network ... sugestions"
In reply to: Tirla Adrian: "large campus network ... sugestions"
Next in thread: Jonas Andradas: "Re: large campus network ... sugestions"
Reply: Jonas Andradas: "Re: large campus network ... sugestions"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Mar 19 2008 - 06:54:30 EDT