Step by Step Bandwidth Management

Step by Step Bandwidth Management

AstroFlowGuard Step By Step Bandwidth Management Guide This guide is intended to be used as a "Step by Step" guide, meaning, that to fully understand and implement it's contents you should go through each step as laid out in the document.

AstroFlowGuard - Step by Step Bandwidth Management All rights reserved. No parts of this work may be reproduced in any form or by any means - graphic, electronic, or mechanical, including photocopying, recording, taping, or information storage and retrieval systems - without the written permission of the publisher. Products that are referred to in this document may be either trademarks and/or registered trademarks of the respective owners. The publisher and the author make no claim to these trademarks. While every precaution has been taken in the preparation of this document, the publisher and the author assume no responsibility for errors or omissions, or for damages resulting from the use of information contained in this document or from the use of programs and source code that may accompany it. In no event shall the publisher and the author be liable for any loss of profit or any other commercial damage caused or alleged to have been caused directly or indirectly by this document. Product AstroFlowGuard by Netsoft Inc. Intended Audience Network Administrators who intend using the AstroFlowGuard Bandwidth Management Module to manage bandwidth on their network. A working knowledge of TCP / IP and basic network knowledge are assumed. Revision v 1.000 Author C. W. Dixon

I AstroFlowGuard - Step by Step Bandwidth Management Table of Contents Foreword 0 Part I Introduction 3 1 Introduction... 3 Part II Step by Step Bandwidth Management 5 1 Step 1 - Local... Subnets 5 2 Step 2 - Host... Manager 5 The purpose of the Host... Manager 5 Adding a Single IP host... 6 Adding an IP range host... 6 3 Step 3 - Classes... 7 The purpose of Classes... 7 Adding Classes... 8 Adding the 32 Kbit... Single IP Class 8 Adding the 32 Kbit... IP Range Class 9 Adding the 32 Kbit... Port Class 10 Adding the 32 Kbit... P2P Class 10 4 Step 4 - Filters... 12 The purpose of Filters... 12 Adding Filters... 12 Adding the Single... IP Filter 12 Adding the IP Range... Filter 13 Adding the Port... Filter 15 Adding the P2P... (Peer to Peer) Filter 16 5 Step 5 - Apply... Changes 17 Apply Changes / Enable... Bandwidth Management 17 Index 0

Part I

3 AstroFlowGuard - Step by Step Bandwidth Management 1 Introduction 1.1 Introduction The AstroFlowGuard Bandwidth Management module is incredibly easy to use once you have familiarised yourself with the way the system works. This quickstart guide will give you a step by step method of setting up basic bandwidth management. Real world examples For the purpose of the example, we will create 4 classes of 32 Kbit to manage the following : 1. Limit a single IP Address to 32 Kbit Incoming and 32 Kbit Outgoing. 2. Limit an IP Address range to 32 Kbit Incoming and 32 Kbit Outgoing. 3. Limit a specific port to 32 Kbit Incoming and 32 Kbit Outgoing. 4. Limit P2P (Peer to Peer) Kazaa traffic to 32 Kbit globally. Variables In this guide, we will assume a local network of 192.168.0.0 with a subnet mask of 255.255.255.0 Continue to Step 1

Part II

5 AstroFlowGuard - Step by Step Bandwidth Management 2 Step by Step Bandwidth Management 2.1 Step 1 - Local Subnets N.B. This step is critical for the function of AstroFlowGuard. AstroflowGuard needs to know all your local subnets in order to manage them. To add your local subnets follow the steps below : Select "System Configuration -> Network Settings -> List Local Subnets" from the menu. Click "Add Local Subnet". Enter the correct values for your local subnet and click "Add Host". You will see the subnet you have just added in the Local Subnet List. Continue to Step 2 2.2 Step 2 - Host Manager 2.2.1 The purpose of the Host Manager The sole purpose of the Host Manager is to simplify large, complex AstroFlowGuard configurations. Although it is not necessary to use the Host manager, it is highly recommended as it provides a central repository for all hosts / networks that you need to manage. A classic example of the benefits of the Host Manager is a case where you have fully configured your AstroFlowGuard system, and now need to change the IP address of one of your hosts - you would simply change that hosts IP address in the Host Manager and those changes will be replicated throughout the system. Adding hosts via Host Manager

Step by Step Bandwidth Management 6 2.2.2 Adding a Single IP host For the purpose of our example, we will add 2 hosts via Host Manager, 1 host with a single IP Address and 1 Host that covers a range of IP Addresses. Adding a host with a single IP Address: Select "Host Manager -> List Hosts" from the menu. Click on the "Add" button. Enter details for the host. Note: We will select a subnet mask of 255.255.255.255 as this is a single IP host. Click "Add host". You will see the configured host in the host list. Continue to next step 2.2.3 Adding an IP range host Adding a host that covers an IP Address range: From the host list, click on the "Add Host" button. Enter details for the host. Note: We will select a subnet mask of 255.255.255.248 which will cover a range of 6 IP Addresses. (192.168.0.16 -> 192.168.0.22 in this case) Click "Add host".

7 AstroFlowGuard - Step by Step Bandwidth Management You will see the configured host in the host list. Continue to Step 3 - Classes Table of Common Subnet Masks I 2.3 Step 3 - Classes Subnet Mask 2.3.1 The purpose of Classes Mask Bits 255.255.255.0 24 255.255.255.128 25 255.255.255.192 26 255.255.255.224 27 255.255.255.240 28 255.255.255.248 29 255.255.255.252 30 255.255.255.254 31 255.255.255.255 32 The AstroFlowGuard Bandwidth Management module makes use of "Classes" to apply bandwidth restrictions. The two default classes are "Incoming" and "Outgoing", custom classes are created under these classes to apply specific restrictions.for more information regarding classes, please see Chapter 7 of the AstroFlowGuard Manual. For the purpose of the examples, we will create the following classes: Under Incoming : 1. 32 Kbit Single IP 2. 32 Kbit IP Range 3. 32 Kbit Port 4. 32 Kbit P2P Under Outgoing : 1. 32 Kbit Single IP 2. 32 Kbit IP Range 3. 32 Kbit Port Note: When limiting P2P, only an Incoming class is created - this will manage both Incoming and Outgoing P2P traffic. Continue to Adding Classes

Step by Step Bandwidth Management 8 2.3.2 Adding Classes We will now add our four classes specific to this example. Select "Bandwidth Manager -> Manage Bandwidth" from the menu. Continue to Adding the 32 Kbit Single IP Class 2.3.2.1 Adding the 32 Kbit Single IP Class In the tree menu in the left pane, click on the "Incoming" node. Click on the "Add Class" button in the right pane. (Class List) Enter the following data for this class: Class Name: Guaranteed Rate: Burst Rate: Queueing Discipline: Add to Outgoing Class: 32 Kbit Single IP 32 Kbit Leave Blank Leave Default (Stochastic Fairness Queueing) Select "Outgoing"

9 AstroFlowGuard - Step by Step Bandwidth Management Click "Add Class" Your Class will appear in the Class list pane on the left. Continue to adding the 32 Kbit IP Range Class 2.3.2.2 Adding the 32 Kbit IP Range Class In the tree menu in the left pane, click on the "Incoming" node. Click on the "Add Class" button in the right pane. (Class List) Enter the following data for this class: Class Name: Guaranteed Rate: Burst Rate: Queueing Discipline: Add to Outgoing Class: 32 Kbit IP Range 32 Kbit Leave Blank Leave Default (Stochastic Fairness Queueing) Select "Outgoing" Click "Add Class" Your Class will appear in the Class list pane on the left. Continue to Adding the 32 Kbit Port Class

Step by Step Bandwidth Management 10 2.3.2.3 Adding the 32 Kbit Port Class In the tree menu in the left pane, click on the "Incoming" node. Click on the "Add Class" button in the right pane. (Class List) Enter the following data for this class: Class Name: Guaranteed Rate: Burst Rate: Queueing Discipline: Add to Outgoing Class: 32 Kbit Port 32 Kbit Leave Blank Leave Default (Stochastic Fairness Queueing) Select "Outgoing" Click "Add Class" Your Class will appear in the Class list pane on the left. Continue to Adding the 32 Kbit P2P Class 2.3.2.4 Adding the 32 Kbit P2P Class In the tree menu in the left pane, click on the "Incoming" node. Click on the "Add Class" button in the right pane. (Class List)

11 AstroFlowGuard - Step by Step Bandwidth Management Enter the following data for this class: Class Name: 32 Kbit P2P Guaranteed Rate: 32 Kbit Burst Rate: Leave Blank Queueing Discipline: Leave Default (Stochastic Fairness Queueing) Add to Outgoing Class: Select "None" - Note: We only create a P2P class under Incoming, with P2P this will manage Incoming and Outgoing traffic. Click "Add Class" You will now see all your classes listed in the Left "Class List" pane. Continue to Step 4 - Filters

Step by Step Bandwidth Management 12 2.4 Step 4 - Filters 2.4.1 The purpose of Filters The filters in AstroFlowGuard define which traffic will be managed by the class that the filter falls under. Example: We want to limit 192.168.0.10 to 32 Kbit Incoming, so we create a filter with the destination host of 192.168.0.10 netmask 255.255.255.255 under the 32 Kbit Class. All traffic with a destination address of 192.168.0.10 will be limited to the 32 Kbit as configured in the class. Continue to Adding the Single IP Filter 2.4.2 Adding Filters Enter topic text here. 2.4.2.1 Adding the Single IP Filter In the tree menu in the left pane, click on the "Incoming / 32 Kbit Single IP" node. All filters assigned to this class will be listed in the right "class list" pane. Click on "Add Filter".

13 AstroFlowGuard - Step by Step Bandwidth Management Enter the following data for this filter: Filter Name: Single IP Protocol: Select "IP" Source Host: Select "Any" Destination Host: Select "Single IP 192.168.0.10" (This list is populated by the host manager) Add to Outgoing Class: Select "Outgoing/32 Kbit Single IP" - This will create a correspondiong filter for Outgoing traffic. Click "Add Filter". Your newly created filter will appear in the filter list. Continue to Adding the IP Range Filter 2.4.2.2 Adding the IP Range Filter In the tree menu in the left pane, click on the "Incoming / 32 Kbit IP Range" node. All filters assigned to this class will be listed in the right "class list" pane.

Step by Step Bandwidth Management 14 Click on "Add Filter". Enter the following data for this filter: Filter Name: IP Range Protocol: Select "IP" Source Host: Select "Any" Destination Host: Select "IP Range 16-22" (This list is populated by the host manager) Add to Outgoing Class: Select "Outgoing/32 Kbit IP Range" - This will create a correspondiong filter for Outgoing traffic. Click "Add Filter". Your newly created filter will appear in the filter list. Continue to Adding the Port Filter

15 AstroFlowGuard - Step by Step Bandwidth Management 2.4.2.3 Adding the Port Filter In the tree menu in the left pane, click on the "Incoming / 32 Kbit Port" node. All filters assigned to this class will be listed in the right "class list" pane. Click on "Add Filter". Enter the following data for this filter: Filter Name: Limit SMTP Protocol: Select "TCP" Source Host: Select "Any" Source Port: Select "Any" Destination Host: Select "Any" Destination Port: Select smtp [25] Add to Outgoing Class: Select "Outgoing/32 Kbit Port" - This will 2003 create Nyala acommunications correspondiong filter for Outgoing traffic.

Step by Step Bandwidth Management 16 Click "Add Filter". Your newly created filter will appear in the filter list. Continue to Adding the P2P (Peer to Peer) Filter 2.4.2.4 Adding the P2P (Peer to Peer) Filter In the tree menu in the left pane, click on the "Incoming / 32 Kbit P2P" node. All filters assigned to this class will be listed in the right "class list" pane. Click on "Add Filter".

17 AstroFlowGuard - Step by Step Bandwidth Management Enter the following data for this filter: Filter Name: Protocol: Source Host: Destination Host: Peer 2 Peer Type: Limit KaZaa Select "P2P" Select "Any" Select "Any" Select KaZaa Click "Add Filter". Your newly created filter will appear in the filter list. Continue to Apply Changes / Enable Bandwidth Management 2.5 Step 5 - Apply Changes 2.5.1 Apply Changes / Enable Bandwidth Management You have now successfully configured AstroFlowGuard to : 1. Limit a single IP Address to 32 Kbit Incoming and 32 Kbit Outgoing. 2. Limit an IP Address range to 32 Kbit Incoming and 32 Kbit Outgoing. 3. Limit a specific port to 32 Kbit Incoming and 32 Kbit Outgoing. 4. Limit P2P (Peer to Peer) Kazaa traffic to 32 Kbit globally. To activate this configuration, click "Apply Changes" in the Bandwidth Manager status bar.

Step by Step Bandwidth Management 18 After the rules have been activated, the Bandwidth Manager will be active. To get familiar with the more advanced features of the AstroFlowGuard Bandwidth Manager, please refer to the Official AstroFlowGuard Manual available at www.astroflowguard.com.

AstroFlowGuard by Netsoft Inc.