RE: dealing with fastrack (Kazaa et.al.)

From: Michael Snyder (msnyder@revolutioncomputer.com)
Date: Wed Oct 02 2002 - 16:56:21 GMT-3

• Next message: Svuillaume8@aol.com: "BGP Route reflector problem!!!!!"
• Previous message: Walker, Todd: "RE: IPSec Pass Through and NAT/PAT"
• Maybe in reply to: McClure, Allen: "RE: dealing with fastrack (Kazaa et.al.)"
• Next in thread: Church, Chuck: "RE: dealing with fastrack (Kazaa et.al.)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Been thinking about this lately.

Got a local cable modem provider getting hammered by kazaa and it's
like.

The network admin of the provider is inept, and can barely put an access
list together. You would grin if you saw some of the configs I've had
to help with.

The reason I'm sharing the above info is that CAR, CBWFQ, & LLQ is out
of this guys grasp for now, and of course he wants to maintain it
himself.

Well, with the kiss method in mind, I think I have come up with a
possible solution.

The main router has multibundle T1's going out, and lan interfaces
coming in from the rest of the cable equipment.

My idea is to put WRED on the multibundle wan interfaces, because it's
much more likely to drop low precedence packets than high precedence
packets.

Then to use a route-map on the lan interfaces to set precedence on the
outgoing wan packets. Something like the following.

Set voice packets to set precedence to 5.

Set any packet with less than 384 bytes to precedence value 4, because
nearly any interactive ip services uses small packets, games, im,
ip-ack, etc.

Set any web or email packets to precedence value 3.

Set ftp and nntp to precedence value 1.

Leave everthing else (kazaa et.al) at precedence 0 to be dropped first.

What do you think? Haven't had time to lab it yet.

The two problems I can think of, first it only does outgoing packets,
thought that's where most of the problem is.

The other is the cpu cycles the route map will use.

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
McClure, Allen
Sent: Wednesday, October 02, 2002 1:11 PM
To: Ciscomonkey@aol.com
Cc: ccielab@groupstudy.com
Subject: RE: dealing with fastrack (Kazaa et.al.)

You may wish to learn a little more about the subject before you
criticize... It's not that easy. It actively works around firewalls and
ACLs. That's why Cisco has NBAR support for it rather than just saying
"block this port".

Allen McClure
MCSE, CCNP, CCDP
YUM! Brands, Inc.
Sr. Network Analyst
NEW E-Mail - mailto:allen.mcclure@yum.com
972-338-7494

• Next message: Svuillaume8@aol.com: "BGP Route reflector problem!!!!!"
• Previous message: Walker, Todd: "RE: IPSec Pass Through and NAT/PAT"
• Maybe in reply to: McClure, Allen: "RE: dealing with fastrack (Kazaa et.al.)"
• Next in thread: Church, Chuck: "RE: dealing with fastrack (Kazaa et.al.)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Nov 05 2002 - 08:35:37 GMT-3