Re: large campus network ... sugestions

To: debian-security@lists.debian.org
Subject: Re: large campus network ... sugestions
From: Adrian Minta <adrian.minta@gmail.com>
Date: Fri, 14 Dec 2007 20:40:06 +0200
Message-id: <[🔎] 4762CE06.3010407@gmail.com>
In-reply-to: <[🔎] 446399850712140304k1ef38b17t30737d62b1ec169b@mail.gmail.com>
References: <446399850712140157j7e237ec7l343598574614b3df@mail.gmail.com> <[🔎] 446399850712140304k1ef38b17t30737d62b1ec169b@mail.gmail.com>

Tirla Adrian wrote:

Hello,

I`m currently one of the network administrators of a 3000+ students
and i have some issues maintaining security, authentication ... and
quality of service ...

1. For authentication you may use something like:http://horatio.sourceforge.net2. Block outgoing connection on ports like: 25, 445, 137-139, blockmulticast, broadcast and bogons.

3. To save bandwidth use transparent proxy.

4. Limit each IP to a maximum bandwidth using HTB and especially limitNAT translation per IP to a reasonably small amount ( 32 should be fineif you are not allowing P2P).


--
Best regards,

Adrian Minta MA3173-RIPE, MA314-ROTLD, www.minta.ro

Reply to:

Follow-Ups:
- Re: large campus network ... sugestions
  - From: "Jonas Andradas" <j.andradas@gmail.com>

References:
- large campus network ... sugestions
  - From: "Tirla Adrian" <tirlaadi@gmail.com>

Prev by Date: Re: large campus network ... sugestions
Next by Date: Re: large campus network ... sugestions
Previous by thread: Re: large campus network ... sugestions
Next by thread: Re: large campus network ... sugestions
Index(es):
- Date
- Thread