Is there a way to reserve incoming bandwidth for an application?

15 pts.
We are running our finance information on a remote mainframe. This is the most critical traffic for the college. The clients establish a VPN to the remote firewall and the finance program runs through it. We have three T1 lines consolidated into one virtual pipe to their location. This is also our connection to the internet. Given our current problems it has become clear the protocol is so poorly designed that the loss of a packet or two will cause the connection to be dropped. The problem got much better when I forced all students to use our throttled proxy but the issue continues. Our provider has recommended we add another T1 line or buy a traffic shaper. I believe since the overwhelming majority of our traffic is incoming, the proper location for a traffic shaper is on their end of the pipe. Putting one on our end wouldn't help much. I even suggested we break one T1 out and dedicate it to this traffic. Their policy won't allow this. In an effort to further limit our incoming traffic I blocked RTSP to prevent streaming audio/video. We are working to force all staff to use the web proxy as well. Can someone recommend what more I can do from my end without spending a fortune.

Answer Wiki

Thanks. We'll let you know when a new response is added.

you can purchase a netscreen and do traffic shaping with it and use the router combining the three t1’s (probably a tasman) in bridged mode and let the netwcreen handle all the firewall and vpn client access. It is a very good router and i use it running citrix servers with a tasman and 15 vpns to remote locations throughout texas. i have no problems and you can set aside as much bandwith as you want to for each application you are running. hope this helps.. Netscreen is made by Juniper networks.

Discuss This Question: 1  Reply

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.
  • Astronomer
    I have no access to the routers on either end of the T1s. The one on our end is a cisco 2600. It sits in our server room but we aren't allowed to touch it. Thanks for the response. rt
    15 pointsBadges:

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.


Share this item with your network: