Scribd Logo
Upload

Welcome to Scribd!

  • Bandwidth PDF

    Uploaded by

    karthong4057
    171 views37 pages
    banwidth

    Original Title

    bandwidth.pdf

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    banwidth

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    171 views37 pages

    Bandwidth PDF

    Uploaded by

    karthong4057
    banwidth

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 37

    Bandwidth

    Mr. Worakorn Kuruwongwattana


    Network Engineer


    - Bandwidth
    -
    - Bandwidth

    Bandwidth

    Bandwidth

    Bandwidth
    -

    - (Priority)
    - DoS
    -

    Bandwidth


    -
    -
    -
    - VLAN
    - Routing


    -
    -
    -


    -
    - Port Mirror
    - Software Flow
    - Sniffer


    :
    Internet


    :
    Internet

    -
    - NAT
    - Filter
    - Filter


    :
    Internet

    - Server
    - Filter
    - Filter
    - NAT


    :
    Internet

    -
    - Filter
    - Filter
    - NAT
    -VLAN Trunk


    :
    Internet

    -
    - Filter
    - Filter
    - NAT


    Software
    Flow Collector
    flow-tools
    (http://www.splintered.net/sw/flow-tools)

    ntop (http://www.ntop.org)


    Software
    Network Sniffer
    Sniffer Pro (Commercial)
    Ethereal (http://www.ethereal.com)
    Wireshark (http://www.wireshark.org)
    tcpdump (http://www.tcpdump.org)


    Wireshark


    ntop


    -
    - Protocol
    - IP Address -
    - IP Address

    Source IP: 172.17.1.9


    Destination IP: 61.90.228.104
    Source Port: 16558
    Destination Port: 554
    Protocol: TCP


    Google TCP Port 554
    Keyword 554/tcp

    Protocol: TCP
    Port: 554
    Common Name:
    RTSP
    (Real Time Streaming Protocol)


    :
    172.17.1.9 Video Streaming
    61.90.228.104

    TV
    Trueworld


    Port Protocol
    Service

    Protocol

    Port

    FTP

    TCP

    21

    FTP-DATA

    TCP

    20

    SMTP

    TCP

    25

    HTTP

    TCP

    80

    HTTPS

    TCP

    443

    POP3

    TCP

    110

    POP3S

    TCP

    995

    IMAP

    TCP

    143

    IMAPS

    TCP

    993


    Port Protocol
    Service

    Protocol

    Port

    DNS-Query

    UDP

    53

    DNS-Zone Xfer

    TCP

    53

    Microsoft
    Directory
    Services

    TCP

    445

    Proxy

    TCP

    3128, 8080

    MSN

    TCP

    1863

    IRC

    TCP

    6667

    TFTP

    UDP

    69

    SNMP

    UDP

    161


    Port Protocol
    Service

    Protocol

    Port

    NTP

    UDP

    123

    SSH

    TCP

    22

    Telnet

    TCP

    23

    Windows File
    Sharing

    TCP

    139

    Webmin
    (Default)

    TCP

    10000

    PING (Request)

    ICMP

    Type: 8

    PING (Reply)

    ICMP

    Type: 0

    Bandwidth

    Bandwidth

    Bandwidth
    - Access Control List (ACL)
    - Quality of Services

    Bandwidth
    Access Control List (ACL)
    - Policy
    - Policy

    Bandwidth
    ACL
    Cisco:
    Router(config)#ip
    Router(config)#ip access-list
    access-list extended
    extended Block-RTSP
    Block-RTSP
    Router(config-ext-nacl)#deny
    Router(config-ext-nacl)#deny tcp
    tcp host
    host 172.17.1.9
    172.17.1.9 any
    any eq
    eq 554
    554
    Router(config-ext-nacl)#permit
    Router(config-ext-nacl)#permit ip
    ip any
    any any
    any
    Router(config-ext-nacl)#interface
    Router(config-ext-nacl)#interface f0/0
    f0/0
    Router(config-if)#
    Router(config-if)# ip
    ip access-group
    access-group Block-RTSP
    Block-RTSP in
    in
    Router(config-if)#
    Router(config-if)# end
    end
    Rouiter#
    Rouiter#

    Bandwidth
    ACL
    Linux:
    root@localhost#
    root@localhost# iptables
    iptables I
    I INPUT
    INPUT s
    s 172.17.1.9
    172.17.1.9 d
    d 0/0
    0/0 p
    p tcp
    tcp dport
    dport
    554
    554 j
    j DROP
    DROP

    Bandwidth
    ACL
    FreeBSD:
    root@localhost#
    root@localhost# ipfw
    ipfw add
    add deny
    deny tcp
    tcp from
    from 172.17.1.9
    172.17.1.9 to
    to any
    any 554
    554

    Bandwidth
    QoS:Traffic Shaping
    Cisco:
    Router(config-if)#
    Router(config-if)# rate-limit
    rate-limit <input|output>
    <input|output> access-group
    access-group <acl
    <acl number>
    number>
    <bandwidth>
    <bandwidth> <normal
    <normal burst>
    burst> <maximum
    <maximum burst>
    burst> conform-action
    conform-action
    <transmit|drop>
    <transmit|drop> exceed-action
    exceed-action <transmit|drop>
    <transmit|drop>
    <normal
    <normal burst>
    burst> --

    Byte
    Byte

    bandwidth
    bandwidth
    2000
    2000

    Bandwidth
    Bandwidth
    <maximum
    <maximum burst>
    burst> --

    Byte
    Byte

    Bandwidth
    Bandwidth

    Bandwidth
    QoS:Traffic Shaping
    FreeBSD:
    root@localhost#
    root@localhost# ipfw
    ipfw add
    add pipe
    pipe 11 tcp
    tcp any
    any 445
    445 to
    to 172.17.1.9
    172.17.1.9 in
    in
    root@localhost#
    root@localhost# ipfw
    ipfw pipe
    pipe 11 config
    config bw
    bw 128Kbit/s
    128Kbit/s
    root@localhost#
    root@localhost# ipfw
    ipfw add
    add pipe
    pipe 22 tcp
    tcp any
    any 80
    80 to
    to 172.17.1.9
    172.17.1.9 in
    in
    root@localhost#
    root@localhost# ipfw
    ipfw pipe
    pipe 22 config
    config bw
    bw 1024Kbit/s
    1024Kbit/s

    Bandwidth

    Bandwidth

    Bandwidth
    -
    -

    -
    -
    - /

    Bandwidth

    Bandwidth

    You might also like