Professional Documents
Culture Documents
Bandwidth PDF
Bandwidth PDF
- Bandwidth
-
- Bandwidth
Bandwidth
Bandwidth
Bandwidth
-
- (Priority)
- DoS
-
Bandwidth
-
-
-
- VLAN
- Routing
-
-
-
-
- Port Mirror
- Software Flow
- Sniffer
:
Internet
:
Internet
-
- NAT
- Filter
- Filter
:
Internet
- Server
- Filter
- Filter
- NAT
:
Internet
-
- Filter
- Filter
- NAT
-VLAN Trunk
:
Internet
-
- Filter
- Filter
- NAT
Software
Flow Collector
flow-tools
(http://www.splintered.net/sw/flow-tools)
ntop (http://www.ntop.org)
Software
Network Sniffer
Sniffer Pro (Commercial)
Ethereal (http://www.ethereal.com)
Wireshark (http://www.wireshark.org)
tcpdump (http://www.tcpdump.org)
Wireshark
ntop
-
- Protocol
- IP Address -
- IP Address
Google TCP Port 554
Keyword 554/tcp
Protocol: TCP
Port: 554
Common Name:
RTSP
(Real Time Streaming Protocol)
:
172.17.1.9 Video Streaming
61.90.228.104
TV
Trueworld
Port Protocol
Service
Protocol
Port
FTP
TCP
21
FTP-DATA
TCP
20
SMTP
TCP
25
HTTP
TCP
80
HTTPS
TCP
443
POP3
TCP
110
POP3S
TCP
995
IMAP
TCP
143
IMAPS
TCP
993
Port Protocol
Service
Protocol
Port
DNS-Query
UDP
53
DNS-Zone Xfer
TCP
53
Microsoft
Directory
Services
TCP
445
Proxy
TCP
3128, 8080
MSN
TCP
1863
IRC
TCP
6667
TFTP
UDP
69
SNMP
UDP
161
Port Protocol
Service
Protocol
Port
NTP
UDP
123
SSH
TCP
22
Telnet
TCP
23
Windows File
Sharing
TCP
139
Webmin
(Default)
TCP
10000
PING (Request)
ICMP
Type: 8
PING (Reply)
ICMP
Type: 0
Bandwidth
Bandwidth
Bandwidth
- Access Control List (ACL)
- Quality of Services
Bandwidth
Access Control List (ACL)
- Policy
- Policy
Bandwidth
ACL
Cisco:
Router(config)#ip
Router(config)#ip access-list
access-list extended
extended Block-RTSP
Block-RTSP
Router(config-ext-nacl)#deny
Router(config-ext-nacl)#deny tcp
tcp host
host 172.17.1.9
172.17.1.9 any
any eq
eq 554
554
Router(config-ext-nacl)#permit
Router(config-ext-nacl)#permit ip
ip any
any any
any
Router(config-ext-nacl)#interface
Router(config-ext-nacl)#interface f0/0
f0/0
Router(config-if)#
Router(config-if)# ip
ip access-group
access-group Block-RTSP
Block-RTSP in
in
Router(config-if)#
Router(config-if)# end
end
Rouiter#
Rouiter#
Bandwidth
ACL
Linux:
root@localhost#
root@localhost# iptables
iptables I
I INPUT
INPUT s
s 172.17.1.9
172.17.1.9 d
d 0/0
0/0 p
p tcp
tcp dport
dport
554
554 j
j DROP
DROP
Bandwidth
ACL
FreeBSD:
root@localhost#
root@localhost# ipfw
ipfw add
add deny
deny tcp
tcp from
from 172.17.1.9
172.17.1.9 to
to any
any 554
554
Bandwidth
QoS:Traffic Shaping
Cisco:
Router(config-if)#
Router(config-if)# rate-limit
rate-limit <input|output>
<input|output> access-group
access-group <acl
<acl number>
number>
<bandwidth>
<bandwidth> <normal
<normal burst>
burst> <maximum
<maximum burst>
burst> conform-action
conform-action
<transmit|drop>
<transmit|drop> exceed-action
exceed-action <transmit|drop>
<transmit|drop>
<normal
<normal burst>
burst> --
Byte
Byte
bandwidth
bandwidth
2000
2000
Bandwidth
Bandwidth
<maximum
<maximum burst>
burst> --
Byte
Byte
Bandwidth
Bandwidth
Bandwidth
QoS:Traffic Shaping
FreeBSD:
root@localhost#
root@localhost# ipfw
ipfw add
add pipe
pipe 11 tcp
tcp any
any 445
445 to
to 172.17.1.9
172.17.1.9 in
in
root@localhost#
root@localhost# ipfw
ipfw pipe
pipe 11 config
config bw
bw 128Kbit/s
128Kbit/s
root@localhost#
root@localhost# ipfw
ipfw add
add pipe
pipe 22 tcp
tcp any
any 80
80 to
to 172.17.1.9
172.17.1.9 in
in
root@localhost#
root@localhost# ipfw
ipfw pipe
pipe 22 config
config bw
bw 1024Kbit/s
1024Kbit/s
Bandwidth
Bandwidth
Bandwidth
-
-
-
-
- /
Bandwidth
Bandwidth