Users from VPN sucking my bandwidth!
Need help !!
We have a script in sysvol that loads maps network drives for all users across the domain. Recently, a lot of users have been connecting to our server via SonicWALL VPN Client. Once they connect, they start working off of their network drives which sucks up ALL of our bandwidth. Even our 2 dual bonded T1 lines can't handle the load. We have a terminal server the users can work from, but they always just seem to want to work off the network drive which slows down our main office. Is there a way to force them to use the terminal server, and limit access to the local network drives once the VPN's already connected?
Hop that makes sense. Lol. Thanks guys!
We have a script in sysvol that loads maps network drives for all users across the domain. Recently, a lot of users have been connecting to our server via SonicWALL VPN Client. Once they connect, they start working off of their network drives which sucks up ALL of our bandwidth. Even our 2 dual bonded T1 lines can't handle the load. We have a terminal server the users can work from, but they always just seem to want to work off the network drive which slows down our main office. Is there a way to force them to use the terminal server, and limit access to the local network drives once the VPN's already connected?
Hop that makes sense. Lol. Thanks guys!
Comments
-
it_consultant
Member Posts: 1,903
Need help !!
We have a script in sysvol that loads maps network drives for all users across the domain. Recently, a lot of users have been connecting to our server via SonicWALL VPN Client. Once they connect, they start working off of their network drives which sucks up ALL of our bandwidth. Even our 2 dual bonded T1 lines can't handle the load. We have a terminal server the users can work from, but they always just seem to want to work off the network drive which slows down our main office. Is there a way to force them to use the terminal server, and limit access to the local network drives once the VPN's already connected?
Hop that makes sense. Lol. Thanks guys!
The short answer is no - if they have access to a VPN you cannot block them from the internal network easily. You might be able to use the rules in the sonicwall to deny access to the IPs of your file shares from the network (I am assuming you are routing the VPN traffic, not bridging) where the VPN traffic terminates. Then, of course, if YOU wanted to go in through the VPN and wanted to get to a file share, you would be blocked.
Consider using TS alone and stopping them from using the VPN. -
Claymoore
Member Posts: 1,637
it_consultant wrote: »Consider using TS alone and stopping them from using the VPN.
Yes, take a look at the Remote Desktop Gateway.
Next, take a look at your internet connection. 2 bonded T1s? My home connection is 10x that speed at probably 1/50th of the cost. You could probably get a 100Mbps Metro E connection for what you are paying for the T1s.